model-usage
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/model_usage.pyexecutes thecodexbarCLI tool viasubprocess.check_outputto retrieve cost usage data in JSON format. The command is executed using a list of arguments, which is a secure practice that prevents shell injection vulnerabilities.\n- [EXTERNAL_DOWNLOADS]: The skill metadata specifies a dependency on thecodexbarbinary, suggesting installation via a third-party Homebrew tap (steipete/tap/codexbar). This is the standard distribution method for the tool that the skill is intended to support.
Audit Metadata