cowork-plugin-customizer
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- System Command Usage: The skill utilizes standard utilities like
find,grep,zip, andcpto manage and package plugin files. These commands are executed within specific local directories to facilitate the customization process. - Knowledge Source Integration: The workflow involves searching internal organizational sources, such as Slack and documentation, to gather context for plugin configuration. This data ingestion is an intended part of the skill's functionality to provide automated updates.
- User-Directed Workflow: To ensure accuracy and alignment with user needs, the skill includes steps to request manual input or confirmation when the gathered context is insufficient.
- Secure Handling of Secrets: The skill handles sensitive configuration by using environment variable placeholders in configuration templates, avoiding the use of hardcoded credentials.
Audit Metadata