cron
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches source code from the author's GitHub repository (github.com/tkersey/skills-zig) and installs a utility from the author's Homebrew tap (tkersey/tap/cron) for local execution.
- [COMMAND_EXECUTION]: Executes shell commands to compile the Zig source code and install the resulting binary to the local user directory. It also manages background process persistence using the macOS launchd system as part of its core scheduling functionality.
- [PROMPT_INJECTION]: The skill processes user-defined prompts for automations which are later executed by the system.
- Ingestion points: Automation creation and update commands in SKILL.md.
- Boundary markers: Not explicitly implemented in the provided shell wrapper.
- Capability inventory: The headless runner executes codex exec for due automations.
- Sanitization: The shell wrapper passes prompt content directly to the cron CLI tool which manages the storage and execution logic.
Audit Metadata