Skills
skills/gaelic-ghost/apple-dev-skills/apple-dash-docsets/Gen Agent Trust Hub

apple-dash-docsets

Pass

Audited by Gen Agent Trust Hub on Mar 15, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill refreshes its local docset catalogs by fetching JSON data from official Dash repositories on GitHub, specifically within the Kapeli organization repositories (feeds, Dash-User-Contributions, and cheatsheets).
  • [COMMAND_EXECUTION]: Utilizes the macOS 'open' utility to trigger application-level actions in Dash, such as performing searches and initiating docset installations via registered URI schemes (dash:// and dash-install://).
  • [COMMAND_EXECUTION]: Orchestrates workflows by executing local Python scripts within its own directory using the subprocess module to handle stage-specific logic.
  • [SAFE]: Sensitive file access is limited to reading the local Dash API status file to discover the listener port, and configuration is stored in a standard vendor-specific configuration path (~/.config/gaelic-ghost/).
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 15, 2026, 09:18 PM