model-usage
Warn
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The SKILL.md file defines an installation step using Homebrew to fetch the codexbar utility from a third-party repository (steipete/tap/codexbar).
- [COMMAND_EXECUTION]: The script scripts/model_usage.py programmatically executes the codexbar binary using the subprocess module to collect cost data.
- [DATA_EXFILTRATION]: The scripts/model_usage.py script implements an --input argument that allows reading content from any user-specified file path. This creates a data exposure risk where sensitive system files could be read and subsequently revealed in the agent's output.
Audit Metadata