ost
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses
uv runto execute a local Python script (scripts/ost.py) to manage a SQLite database for the OST workflow. This is a transparent and appropriate use of local command execution for the skill's purpose. - [SAFE]: The Python script implements database operations using parameterized queries (e.g.,
conn.execute('...', (param,))), which prevents potential SQL injection vulnerabilities. - [SAFE]: No network operations, external downloads, or remote code execution patterns were detected. All imported modules are from the Python standard library.
- [SAFE]: No evidence of prompt injection, data exfiltration, hardcoded credentials, or obfuscation techniques was found across the skill files.
Audit Metadata