geekbot
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill facilitates legitimate interaction with the Geekbot platform using a vendor-provided CLI tool. All operations follow the documented noun-verb pattern of the service.
- [SAFE]: Mandatory confirmation policies are enforced for sensitive actions such as creating, updating, or deleting standups, as well as posting reports. This ensures that the agent cannot perform destructive or public-facing actions without explicit user approval.
- [SAFE]: Credentials are managed securely. The skill instructs the user to use the CLI's built-in authentication mechanism (which leverages the OS keychain) or environment variables, avoiding the use of hardcoded secrets or unsafe storage practices.
- [SAFE]: Data enrichment from external MCP servers (like GitHub or Jira) is designed with user privacy and accuracy in mind. The instructions explicitly state that the user must review any auto-populated data before it is posted.
Audit Metadata