1password
Pass
Audited by Gen Agent Trust Hub on Apr 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill demonstrates a high regard for security by including explicit instructions to avoid pasting secrets into logs, chat, or code. It favors secure methods like
op runandop injectover writing sensitive data to disk. - [COMMAND_EXECUTION]: Shell commands are used appropriately to interface with the
opCLI. The skill mandates the use of a dedicated tmux session with a unique socket to securely manage terminal-based authentication prompts and persistent sessions. - [EXTERNAL_DOWNLOADS]: The skill directs the user to install the 1Password CLI via official and well-known channels, such as Homebrew on macOS or official documentation for other platforms.
- [DATA_EXFILTRATION]: No suspicious network operations or unauthorized data transmission patterns were found. All data access is scoped to the user's authenticated 1Password vault.
- [PROMPT_INJECTION]: The skill does not contain instructions that attempt to override agent safety protocols or bypass system constraints. It also avoids the use of dynamic context injection placeholders.
Audit Metadata