readwise-cli
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the
@readwise/clipackage via NPM. This is the official package associated with the vendor 'readwiseio' and is considered a safe dependency. - [COMMAND_EXECUTION]: The skill executes various
readwiseCLI commands to manage user highlights and documents. These executions are limited to the intended functionality of the Readwise service and do not perform unauthorized system operations. - [SAFE]: The skill processes data from external sources such as articles and RSS feeds. While this represents a surface for indirect instructions, the skill does not possess dangerous capabilities like arbitrary code execution or local file writing that could be exploited.
- Ingestion points: Document and highlight content is fetched via
readwise reader-get-document-detailsand similar commands. - Boundary markers: No explicit boundary markers are present in the provided examples.
- Capability inventory: Capabilities are restricted to Readwise API operations (read/write/list documents and highlights).
- Sanitization: Content is handled as Markdown/HTML; no specific sanitization is implemented in the skill instructions.
Audit Metadata