gh-aw-firewall
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides installation instructions that fetch a script from GitHub's official repository (github/gh-aw-firewall). This is a well-known service, and the download is documented neutrally as a standard installation procedure.
- [COMMAND_EXECUTION]: The skill describes the use of
sudoandiptablesto enforce network security rules. These high-privilege operations are directly related to the skill's primary purpose of managing a system-level firewall and are explicitly documented for the user. - [CREDENTIALS_UNSAFE]: The skill includes documentation for an 'API Proxy Sidecar' intended to secure LLM credentials. All examples use non-sensitive placeholders such as
sk-xxxandsecret123. No real secrets or keys are hardcoded in the skill. - [DATA_EXFILTRATION]: No suspicious network patterns or sensitive file access patterns were detected. The core function of the documented tool is to prevent data exfiltration by enforcing a domain whitelist.
Audit Metadata