himalaya
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
himalayaCLI tool for email operations such as listing envelopes, reading message content, and sending emails. These commands are consistent with the skill's stated purpose and use standard CLI patterns. - [EXTERNAL_DOWNLOADS]: The skill provides instructions for installing the
himalayatool through the Homebrew package manager and references its official GitHub repository. These sources are reputable and standard for developer tooling. - [SAFE]: No malicious patterns such as credential exfiltration, obfuscation, or unauthorized remote code execution were detected. The skill specifically promotes secure configuration by encouraging the use of external password managers or system keyrings rather than storing raw passwords in configuration files.
Audit Metadata