picoclaw-self-pen-testing
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed for local diagnostic purposes and operates entirely within the host environment without network egress or unauthorized data access. It focuses on identifying misconfigurations and providing guidance.
- [COMMAND_EXECUTION]: The skill uses Node.js to run localized analysis scripts. These scripts process structured JSON data and do not involve the execution of arbitrary shell commands or untrusted external code.
- [DATA_EXFILTRATION]: No network-capable tools or exfiltration patterns were detected. The analysis results are output locally to the console for operator review.
Audit Metadata