Skills
skills/soul-brews-studio/oracle-skills-cli/standup/Gen Agent Trust Hub

standup

Warn

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes multiple shell commands to aggregate data from the local environment and system utilities.\n
  • It accesses specific local file paths including ~/.oracle/Δ/inbox/schedule.md, Δ/inbox/focus*.md, and Δ/memory/retrospectives/ which likely contain personal or sensitive information.\n
  • It runs git log to extract the user's recent commit history and date to determine the current timestamp.\n- [EXTERNAL_DOWNLOADS]: The skill uses the GitHub CLI (gh api) to fetch data from a remote repository (laris-co/nat-location-data) that is not identified as a trusted source.\n
  • It specifically targets a CSV file to extract location data (iPhone coordinates) and decodes it using base64.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 5, 2026, 12:42 AM