Scan Report
5 /100
1password
Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/running secrets via op.
A pure documentation skill for 1Password CLI usage with no executable code, scripts, or suspicious behavior - only markdown documentation and CLI examples referencing official 1Password resources.
Safe to install
This skill is safe to use. No action required.
| Resource | Declared | Inferred | Status | Evidence |
|---|---|---|---|---|
| Filesystem | NONE | NONE | — | No file operations in skill - pure documentation |
| Network | NONE | READ | ✓ Aligned | References official 1Password documentation URLs (developer.1password.com) |
| Shell | NONE | READ | ✓ Aligned | Documents tmux session usage for legitimate CLI TTY handling |
| Environment | NONE | NONE | — | No direct environment access - uses op CLI which handles auth |
| Skill Invoke | NONE | NONE | — | No skill invocation patterns detected |
| Clipboard | NONE | NONE | — | No clipboard access documented |
| Browser | NONE | NONE | — | No browser automation |
| Database | NONE | NONE | — | No database access |
1 findings
Medium External URL 外部 URL
https://developer.1password.com/docs/cli/get-started/ SKILL.md:4 File Tree
3 files · 4.2 KB · 116 lines Markdown 3f · 116L
├─
▾
references
│ ├─
cli-examples.md
Markdown
│ └─
get-started.md
Markdown
└─
SKILL.md
Markdown
Security Positives
✓ No executable code or scripts - purely documentation
✓ All references point to official 1Password documentation
✓ No credential harvesting or exfiltration patterns
✓ No base64, eval, or obfuscation patterns
✓ No sensitive file access (no ~/.ssh, ~/.aws, .env access)
✓ No external downloads or remote script execution
✓ Clear and transparent documentation of intended behavior
✓ Uses tmux for legitimate TTY session management to avoid re-prompts