Security checks across malware telemetry and agentic risk
This is a disclosed remote safety-check CLI, with privacy considerations but no evidence of hidden execution, persistence, credential theft, or destructive behavior.
Install only if you are comfortable sending operation descriptions to a remote safety service. Avoid including secrets, tokens, private customer data, or full sensitive URLs in the input, context, or target fields, verify any SAFETY_API_URL override, and configure callers not to proceed silently when the check errors or returns a blocking decision.
merged_env = os.environ.copy()
if env:
merged_env.update(env)
return subprocess.run(
[sys.executable, str(SCRIPT_PATH)] + args,
capture_output=True,
text=True,last_exc = None
for attempt in range(1 + MAX_RETRIES):
try:
resp = requests.post(url, json=json_payload, timeout=timeout)
if resp.status_code in (502, 503, 504) and attempt < MAX_RETRIES:
time.sleep(RETRY_BACKOFF * (2 ** attempt))
continueclass TestSafetyContract(unittest.TestCase):
def _run_cli(self, args, env=None):
merged_env = os.environ.copy()
if env:
merged_env.update(env)
return subprocess.run(## Core commands
```bash
python3 scripts/safety.py -i "Delete /tmp/cache/build-123.log" \
-c '{"environment":"local-dev","operation_intent":"cleanup","scope":"single-resource","data_sensitivity":"internal","rollback":"easy","change_control":"none"}' \
-t "/tmp/cache/build-123.log" --json"recommendation": "review",
},
):
code, stdout, _ = self._run_main(["--input", "rm -rf /tmp/cache", "--json"])
self.assertEqual(code, 0)
payload = json.loads(stdout)"recommendation": "review",
},
):
code, stdout, _ = self._run_main(["--input", "rm -rf /tmp/cache", "--json"])
self.assertEqual(code, 0)
payload = json.loads(stdout)"risk_level": "high",
},
):
code, stdout, _ = self._run_main(["--input", "rm -rf /", "--json"])
self.assertEqual(code, 1)
payload = json.loads(stdout)66/66 vendors flagged this skill as clean.