Skills
skills/eng0ai/eng0-template-skills/content-ops-netlify/Gen Agent Trust Hub

content-ops-netlify

Fail

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [REMOTE_CODE_EXECUTION] (HIGH): The skill performs a git clone from github.com/netlify-templates/content-ops-starter.git and subsequently runs npm install and npm run build. This pattern involves downloading and executing code from an external source not included in the trusted list, which is a high-severity risk.
  • [COMMAND_EXECUTION] (HIGH): Shell commands are used to install dependencies and deploy the application. These commands execute scripts defined in the external repository's package.json, which could be modified by an attacker.
  • [EXTERNAL_DOWNLOADS] (HIGH): The skill retrieves code from a remote Git repository (netlify-templates) that is not present in the predefined trusted sources list, necessitating a high-severity finding for the unverified download and subsequent execution.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 16, 2026, 01:19 AM