jk
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install the
jkCLI tool from the author's GitHub repository (github.com/avivsinai/jenkins-cli), Homebrew tap (avivsinai/tap), and Scoop bucket. These resources originate from the vendor's infrastructure and are consistent with the skill's purpose. - [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands using the
jkbinary to perform Jenkins administrative tasks, such as managing plugins, cordoning nodes, and starting build runs. - [CREDENTIALS_UNSAFE]: The skill includes commands for authenticating with Jenkins controllers and managing sensitive secrets. It documents flags for skipping TLS verification (
--insecure) and allowing unencrypted credential storage (--allow-insecure-store), which are provided as options for specific controller configurations.
Audit Metadata