shell-scripting
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill documentation and example scripts provide high-quality, secure patterns for shell development.
- [COMMAND_EXECUTION] (SAFE): Scripts use best practices like 'set -euo pipefail', proper variable quoting, and argument validation to prevent command injection. Utility scripts for linting and testing call well-known tools (shellcheck, bats) using structured execution patterns.
- [DATA_EXPOSURE] (SAFE): No hardcoded credentials or unauthorized access to sensitive file paths (e.g., ~/.aws/credentials) were found. Use of environment variables for configuration follows safe 'fail-fast' patterns.
- [EXTERNAL_DOWNLOADS] (SAFE): Network requests in examples are limited to demonstration purposes, using either whitelisted local endpoints (localhost) or placeholder domains. No piped execution of remote scripts was identified.
Audit Metadata