1password
Alert level: High
Set up and use 1Password CLI (op). Use when installing the CLI, enabling desktop app integration, signing in (single or multi-account), or reading/injecting/running secrets via op.
Locality:Hybrid
Data access:Sensitive
Actions:Execute
Installs 42Downloads 779Stars 5Updated 372h ago
Why this rating
Deterministic checks triggered by the tool capabilities and evidence.
- Locality: Hybrid
References external hosts (developer.1password.com, my.1password.com).
- Data access: Sensitive
Reads secrets from a 1Password account/vault via op.
- Action surface: Execute
Uses CLI commands and op run/op inject to execute with secrets.
Best practices
Follow these steps to reduce risk when using this skill.
- Use a dedicated vault or service account with least privilege.
- Avoid exporting secrets to disk; prefer op run/op inject.
- Limit access to only the items needed for this workflow.
Evidence links
Public sources backing the indicator assignments.
Always be careful when navigating away from the website.
Max-risk rule
If any capability reaches a higher level, the entire indicator level bumps up to keep ratings deterministic and easy to scan.