agent-workflow
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [REMOTE_CODE_EXECUTION]: The SKILL.md file contains a Dockerfile example that downloads and executes an installation script from the official domain of a well-known service (Anthropic). This script is used to install the Claude CLI tool.
- [EXTERNAL_DOWNLOADS]: Fetches installation scripts and configuration guidelines from official and trusted sources.
- [COMMAND_EXECUTION]: Provides documentation and examples for executing standard shell commands and git workflows to automate development tasks, such as generating commit messages and managing PRs.
- [DATA_EXFILTRATION]: Demonstrates secure handling of API keys by passing them via environment variables in a containerized sandbox environment, preventing credential hardcoding.
Audit Metadata