Skills
skills/actionbook/postagent/vercel-seat-saver/Gen Agent Trust Hub

vercel-seat-saver

Pass

Audited by Gen Agent Trust Hub on Apr 16, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill requires the installation of the postagent CLI tool via the NPM registry (npm i -g postagent@latest). This is the primary utility provided by the vendor for deployment operations.
  • [COMMAND_EXECUTION]: The skill utilizes several CLI commands, including postagent for API interactions and authentication, and standard git commands for repository management.
  • [PROMPT_INJECTION]: The skill displays an indirect prompt injection surface by ingesting data from external APIs (Vercel and GitHub) to generate repository-specific GitHub Actions workflows. 1. Ingestion points: Data is retrieved from Vercel's project/team APIs and GitHub's repository API via postagent (SKILL.md). 2. Boundary markers: No explicit boundary markers or isolation instructions are provided for the API-retrieved content. 3. Capability inventory: The skill can write configuration files (.github/workflows/vercel-deploy.yml) and execute network operations. 4. Sanitization: No specific sanitization or escaping of external API data is detailed before its use in workflow file generation.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 16, 2026, 01:31 PM