sparv
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill implements a robust workflow management system that operates entirely on local files within the project directory. It maintains a state machine and activity logs in the .sparv/ folder.
- [COMMAND_EXECUTION]: The skill uses shell scripts for lifecycle management (e.g., init-session.sh, save-progress.sh). These scripts perform routine file operations such as directory creation, state tracking in YAML files, and appending log entries. No unsafe command construction or privilege escalation attempts were detected.
- [SAFE]: Includes a dedicated risk-scanning script (check-ehrb.sh) designed to detect and flag high-risk activities like accessing production environments or handling sensitive credentials, which acts as a protective layer for the user.
Audit Metadata