oss-forensics
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill operates as a legitimate security forensic tool, following established incident response patterns.
- [SAFE]: All external network operations target well-known and trusted services, including GitHub (
api.github.com), the Internet Archive (web.archive.org), and Google Cloud (BigQuery). - [SAFE]: The skill includes explicit 'Anti-Hallucination Guardrails' that strictly forbid the local execution of code found in investigated repositories, mandating static analysis or sandboxed environments instead.
- [SAFE]: The
evidence-store.pyscript manages investigation data locally using a JSON store. It uses SHA-256 hashing to ensure the integrity of the collected evidence and does not have any external dependencies or malicious functions. - [SAFE]: Indirect prompt injection risks (from analyzing malicious repository content) are mitigated by explicit instructions to maintain role boundaries and treat unverified data as hypotheses rather than facts.
Audit Metadata