heartbeat-governor
Pass
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary function is budget enforcement and monitoring. No malicious patterns, obfuscation, or safety bypasses were detected during analysis.
- [COMMAND_EXECUTION]: The skill provides a command-line utility for manual budget management. The Python implementation uses safe argument parsing and does not invoke external shell processes with untrusted input.
- [DATA_EXFILTRATION]: The skill maintains usage data in a local state file within the user's home directory. There is no evidence of network communication or exfiltration of sensitive information.
- [EXTERNAL_DOWNLOADS]: The skill relies on the standard PyYAML library for state management. This is a common and legitimate dependency for utilities that handle configuration files.
Audit Metadata