erf-expert
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides legitimate automation for 1C development workflows without any detected malicious patterns.
- [COMMAND_EXECUTION]: The skill uses PowerShell's Start-Process to execute the local 1C platform executable (1cv8.exe) for building and extracting report files. This is the primary intended function of the skill and is implemented using standard system calls.
- [CREDENTIALS_UNSAFE]: The scripts are designed to process database credentials (username and password) passed as arguments to authenticate with 1C:Enterprise databases. This is a functional requirement for the task and does not involve hardcoded secrets or evidence of credential exfiltration.
Audit Metadata