Skills
skills/mvanhorn/printing-press-library/pp-open-meteo/Gen Agent Trust Hub

pp-open-meteo

Pass

Audited by Gen Agent Trust Hub on May 7, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Fetches the open-meteo-pp-cli and MCP server from the author's GitHub repository (mvanhorn/printing-press-library) and an NPM package (@mvanhorn/printing-press).
  • [COMMAND_EXECUTION]: Executes shell commands to install and run the Open-Meteo CLI tool.
  • [DATA_EXFILTRATION]: Features a --deliver webhook:<url> option that allows the agent to POST command results to an external HTTP endpoint, which could be exploited for exfiltration if used with sensitive data.
  • [COMMAND_EXECUTION]: Features a --deliver file:<path> option that allows writing command output to a specified local file path, potentially enabling the overwriting of sensitive configuration files.
Audit Metadata
Risk Level
SAFE
Analyzed
May 7, 2026, 05:56 PM