security-ops
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a secure orchestration workflow for local security auditing, using parallel agents to perform read-only analysis of the codebase.
- [COMMAND_EXECUTION]: Executes common security tools (e.g., npm audit, pip-audit, govulncheck) and search utilities like ripgrep to identify known vulnerabilities and insecure coding patterns within the local project scope.
- [EXTERNAL_DOWNLOADS]: References installation instructions and official documentation for well-known security utilities from trusted organizations; no attempts to download or execute arbitrary remote scripts were detected.
- [SAFE]: Security risks from processing untrusted codebase content are mitigated by the use of distinct analysis tiers and a human-in-the-loop requirement for all remediation tasks. Ingestion points: local scan script outputs; Boundary markers: present in orchestrator prompts; Capabilities: Bash, Write, Edit, and TaskCreate; Sanitization: enforced through mandatory human review of all suggested changes.
Audit Metadata