1password
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill exclusively uses the official 1Password CLI (
op) and references official documentation. No suspicious downloads or remote code executions were detected. - [SAFE]: Security guardrails are explicitly defined, instructing the agent never to paste secrets into logs or chat and to prefer
op runorop injectover writing secrets to disk. - [SAFE]: The requirement to use isolated tmux sessions with unique sockets (
SOCKET_DIR) is a security best practice for CLI tools in automated environments, ensuring that sensitive authentication prompts or outputs are not captured by standard shell history or shared TTYs.
Audit Metadata