taskfile
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a documentation resource and template generator for the go-task automation tool. It does not include executable scripts or external dependencies of its own.
- [EXTERNAL_DOWNLOADS]: External links in the documentation and metadata reference the official domain taskfile.dev, which is a well-known and trusted service for this tool.
- [COMMAND_EXECUTION]: The skill facilitates the creation of Taskfile.yml files that execute shell commands. Security risks are addressed through instructions that advocate for confirmation prompts, variable validation, and environment preconditions.
- [CREDENTIALS_UNSAFE]: No hardcoded credentials were found. Examples correctly demonstrate the use of environment variables and .env files for secure secret management.
- [DATA_EXFILTRATION]: No network exfiltration patterns or unauthorized data access commands were identified. The skill focuses on local project automation tasks.
- [PROMPT_INJECTION]: The skill instructions do not contain patterns intended to override agent behavior or bypass safety guidelines.
Audit Metadata