open-source-checker
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references and provides installation instructions for well-known security tools like gitleaks, trufflehog, and BFG Repo-Cleaner. Downloads are sourced from trusted platforms including GitHub releases and Maven Central.
- [COMMAND_EXECUTION]: Employs standard utility commands such as
find,grep, andgitto audit file systems and repository history for sensitive patterns. These operations are strictly aligned with the skill's primary purpose of security auditing. - [SAFE]: All credentials and API keys mentioned in the documentation are provided as regex patterns or clearly marked examples for identification purposes. The skill follows security best practices by encouraging the use of environment variables and secret rotation.
Audit Metadata