adynato-cloudflare
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill recommends installing the wrangler CLI via npm and using npx. While this is the official tool, unversioned package installation from public registries is a potential risk factor, here downgraded due to its necessity for the skill's primary purpose.
- [COMMAND_EXECUTION] (SAFE): The provided commands for managing Cloudflare Workers, KV, and D1 are standard and appropriate for the skill's stated goal of assisting with Cloudflare deployments.
- [PROMPT_INJECTION] (LOW): The guide includes commands for live log streaming (wrangler tail), which creates an indirect prompt injection surface. Malicious external input appearing in logs could influence an agent if processed without sanitization. Evidence: 1. Ingestion: wrangler tail output (SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: wrangler deploy, wrangler d1 execute, wrangler secret put (SKILL.md). 4. Sanitization: Absent.
Audit Metadata