Skills
skills/warpdotdev/warp/onboarding-verification-skill/Gen Agent Trust Hub

onboarding-verification-skill

Pass

Audited by Gen Agent Trust Hub on May 19, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads the Warp terminal installation packages (DEB, RPM, Pacman, AppImage) from the official vendor domain app.warp.dev. This is consistent with the skill's purpose of verifying the latest stable build.
  • [COMMAND_EXECUTION]: The skill executes system package managers (apt, rpm, pacman) to install the downloaded software and uses shell commands to clean up previous application state (e.g., rm -rf ~/.config/warp-terminal). These operations are performed within remote cloud agents and are required for testing the installation flow.
  • [CREDENTIALS_UNSAFE]: The skill references a managed secret ONBOARDING_AGENT_FTUE_REFRESH_TOKEN used for automated login tests. It provides comprehensive safety instructions to prevent the secret from being exposed in logs, screenshots, shell history, or reports, emphasizing secure handling during the authentication process.
Audit Metadata
Risk Level
SAFE
Analyzed
May 19, 2026, 01:10 AM
Security Audit — agent-trust-hub — onboarding-verification-skill