skills/datadrivenconstruction/ddc_skills_for_ai_agents_in_construction/rvt-to-ifc/Gen Agent Trust Hub
rvt-to-ifc
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes a local executable RVT2IFCconverter.exe using subprocess.run. Arguments are passed as a list to prevent shell injection vulnerabilities.
- [SAFE]: File system interactions are limited to reading input Revit models and writing output IFC files, which is consistent with the skill's intended functionality and declared permissions.
- [SAFE]: The external binary dependency and documentation links point to official resources from the vendor datadrivenconstruction, indicating legitimate software distribution.
Audit Metadata