1password
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill integrates with the official 1Password CLI, which is a well-known and trusted security tool for secret management.
- [SAFE]: Documentation links point to the official 1Password developer portal, ensuring users follow verified setup procedures.
- [SAFE]: The skill includes specific security guardrails, such as 'Never paste secrets into logs, chat, or code' and preferring 'op run' over writing secrets to disk.
- [COMMAND_EXECUTION]: The workflow utilizes
tmuxto handle theopCLI's requirement for a TTY during authentication. While this involves command execution, it is implemented using local temporary sockets and unique session names to isolate the process. - [EXTERNAL_DOWNLOADS]: The skill recommends installing the 1Password CLI via Homebrew (
brew), a well-known and trusted package manager for macOS and Linux. - [SAFE]: No hardcoded credentials, obfuscation, or unauthorized network operations were detected. The skill operates entirely within the context of the user's own 1Password account and local environment.
Audit Metadata