Skills
skills/timescale/marketing-skills/skill-contributor/Gen Agent Trust Hub

skill-contributor

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands such as git status, git diff, and a piped mount command string (mount | grep ... | awk ... | sed ...) to inspect the local environment and repository state. These commands are used legitimately to facilitate the submission process and determine local file paths.
  • [EXTERNAL_DOWNLOADS]: The skill interacts with the timescale/marketing-skills repository on GitHub to fetch configuration files (REVIEWING.md, README.md) and push content. These interactions are limited to the official repository of the skill's vendor and are essential for the skill's primary function.
  • [DATA_EXFILTRATION]: Although the skill involves pushing data to a public GitHub repository, it incorporates a mandatory "Privacy review" step designed to detect and remove proprietary or sensitive content before submission, significantly mitigating the risk of accidental data exposure.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 01:21 PM