gemini-cli
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists entirely of markdown documentation and a license file. There are no executable scripts (.sh, .py, .js), binaries, or configuration files that the agent would execute.
- [EXTERNAL_DOWNLOADS] (SAFE): All external links in
SKILL.mdandreferences/documentation_index.mdpoint togoogle-gemini.github.io. Per the [TRUST-SCOPE-RULE], these are considered trusted sources as they belong to a verified Google organization. No automated downloads or installations are initiated by the skill. - [COMMAND_EXECUTION] (SAFE): While the documentation describes capabilities like
run_shell_command, the skill itself does not invoke these commands. It serves as a reference guide for the user rather than an automated tool. - [CREDENTIALS_UNSAFE] (SAFE): No hardcoded API keys, tokens, or secrets were found. The documentation correctly advises users against storing credentials in plaintext.
Audit Metadata