plugin-settings
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill establishes a standardized pattern for storing plugin configurations in local files. It emphasizes security best practices, such as excluding these files from version control and applying strict file permissions.
- [COMMAND_EXECUTION]: Provides Bash-based utility scripts to extract configuration values using standard tools like sed, awk, and jq. These scripts include patterns for input validation, such as checking numeric ranges and sanitizing user-provided strings before writing to the configuration files.
- [DATA_EXFILTRATION]: Includes hook examples that implement security checks to prevent unauthorized file access. For instance, the example scripts verify that file paths do not contain traversal patterns (e.g., '..') and explicitly block access to sensitive files like '.env' or secret directories.
Audit Metadata