skills/unnoo/zsxq-skill/zsxq-shared/Gen Agent Trust Hub

zsxq-shared

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill serves as a documentation guide for a legitimate CLI utility. It does not contain any suspicious patterns such as remote code execution, obfuscation, or unauthorized data collection.
  • [SAFE]: Authentication is handled via a standard OAuth 2.0 device authorization flow. The instructions correctly direct the agent to store tokens in the system Keychain and explicitly warn against exposing credentials in terminal output.
  • [COMMAND_EXECUTION]: The skill defines commands for the zsxq-cli tool. While it passes user-provided data (like search keywords) to the CLI, the risk is addressed by safety rules requiring user intent confirmation for all write or delete operations (e.g., posting or commenting).
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 05:23 AM
Security Audit — agent-trust-hub — zsxq-shared