specstory-guard
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes the
subprocessmodule to executegitcommands and its own internal Python scripts. This behavior is transparent and necessary for the stated purpose of installing and running a git hook.- [DATA_EXFILTRATION] (SAFE): No network-related code or exfiltration patterns were detected. The skill only interacts with the local file system to read history files and write the hook script.- [EXTERNAL_DOWNLOADS] (SAFE): The skill does not define any external Python or Node.js dependencies and does not download content from the internet.- [PRIVILEGE_ESCALATION] (SAFE): Use ofos.chmodis limited to making the installed git hook executable, which is standard procedure for this use case.
Audit Metadata