opencode-config
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill includes a local shell script
scripts/validate-config.shdesigned to audit configuration files. It uses standard tools likejqandgrepto verify file existence and syntax. - [EXTERNAL_DOWNLOADS]: The documentation and skill metadata reference official JSON schemas and documentation at
opencode.aiand the official GitHub repository for the OpenCode project. These are legitimate resources for the tool's intended purpose. - [DATA_EXPOSURE]: The skill reads and interacts with configuration files located in the user's home directory (
~/.config/opencode/) and the local project path. This access is limited to application-specific configuration data and is necessary for the skill's functionality.
Audit Metadata