render
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill enables the agent to manage Render cloud services by executing CLI commands for deployment, workspace configuration, and log inspection.
- [DATA_EXFILTRATION]: The skill includes instructions for using
render psqlandrender ssh, which provide direct access to remote database contents and service environments. - [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection as it retrieves and processes data from external sources such as the Render API and remote databases. * Ingestion points: The agent reads metadata from
render servicesand query results fromrender psql. * Boundary markers: No delimiters are specified to distinguish between CLI output and agent instructions. * Capability inventory: The skill can trigger infrastructure changes viarender deploysand access sensitive environments viarender ssh. * Sanitization: There is no evidence of validation or filtering for content retrieved from external CLI outputs.
Audit Metadata