Skills
skills/dawiddutoit/custom-claude/caddy-subdomain-add/Gen Agent Trust Hub

caddy-subdomain-add

Pass

Audited by Gen Agent Trust Hub on Feb 24, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No security issues detected. The skill performs intended infrastructure management tasks using local scripts and configuration files.
  • [COMMAND_EXECUTION]: Executes local management and verification scripts as part of its core functionality.
  • Evidence: Runs manage-domains.sh to apply changes and uses dig, openssl, and curl for verification in SKILL.md.
  • [EXTERNAL_DOWNLOADS]: Interacts with Cloudflare services for DNS and authentication setup.
  • Evidence: Skill references https://one.dash.cloudflare.com for manual tunnel configuration and uses Cloudflare APIs for certificate management. Cloudflare is a well-known, trusted service.
  • [PROMPT_INJECTION]: The skill processes user-provided strings for network configuration but implements validation.
  • Ingestion points: User-provided values for service names, subdomains, and backends in SKILL.md.
  • Boundary markers: None explicit, but values are written to a structured TOML file.
  • Capability inventory: Modification of local configuration files (domains.toml) and service restarts (Caddy, Pi-hole).
  • Sanitization: Employs scripts/validate-subdomain.py which uses regular expressions to ensure input matches expected DNS and IP patterns.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 24, 2026, 05:23 PM