skill-nix-implementation
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill makes extensive use of the
Bashtool to manage task lifecycles. This includes usingjqto update state tracking files,sedfor modifying plan documents, and standard file operations to create marker files. - [SAFE]: The skill follows security best practices for shell operations, such as using
jq --argto safely interpolate variables into JSON commands, which prevents command injection vulnerabilities. - [SAFE]: External interactions are restricted to invoking a subagent via the built-in
Tasktool and performing standard version control operations withgit. No unauthorized network communication or data exfiltration attempts were found. - [SAFE]: File access is constrained to the
specs/directory and project-specific paths, following the principle of least privilege for task management.
Audit Metadata