fizzy-workflow
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local commands using the
fizzyCLI andgit. These operations are used for task management (moving cards, assigning users, posting comments) and standard version control workflows (commit, push, retrieving logs). This behavior is consistent with the skill's stated purpose of managing a development workflow. - [COMMAND_EXECUTION]: The
scripts/fizzy-context.shscript executesfizzyandjqto retrieve project metadata such as board columns and user identity. This is a standard utility function for gathering context. - [EXTERNAL_DOWNLOADS]: The documentation references official download locations for the
fizzyCLI (GitHub releases) andjq(standard package managers likebreworapt). These are well-known, trusted sources for developer tools.
Audit Metadata