wrangler
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Command Execution for CLI Operations: The skill utilizes numerous shell commands via the Wrangler CLI to manage Cloudflare services such as Workers, KV, and R2. These commands are integral to the skill's purpose of managing a development workflow and interact with the vendor's official infrastructure.
- Official Package Installations: The instructions include commands to install development dependencies using standard package managers (e.g.,
npm install -D wrangler@latest,npx create-cloudflare@latest). These refer to official, well-known packages from the vendor's ecosystem used for project initialization and testing. - Secure Secret Management Practices: The skill provides explicit guidance on avoiding unsafe secret handling, such as hardcoding or passing secrets as CLI arguments. It recommends standard secure patterns like using
.dev.varsfor local development and interactive prompts for production secrets. - Local File Access for Asset Management: Several commands involve reading local files, such as schema definitions (
.sql), assets for storage (.txt), or private keys for secret storage. This access is necessary for deploying local project resources to Cloudflare's platform. - Data Ingestion Surface: The skill includes features for viewing live logs (
wrangler tail) and executing database queries (wrangler d1 execute). While this introduces external data into the agent's context, it is a standard part of observability and database management tasks.
Audit Metadata