ntfy-notify
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- COMMAND_EXECUTION (LOW): The
scripts/ntfy_send.shscript executescurlto interact with the ntfy API. - Evidence: The script uses bash arrays (
CURL_ARGS) to handle command arguments, which prevents common shell injection vulnerabilities by ensuring variables are not re-interpreted as shell commands. - DATA_EXFILTRATION (LOW): The skill is designed to send data (messages and auth tokens) to external servers.
- Evidence: This is the primary purpose of the notification skill. It transmits data to
ntfy.shor a custom server defined by the user. While this is a network operation to a non-whitelisted domain, it is essential for the skill's functionality. - CREDENTIALS_UNSAFE (SAFE): The skill handles authentication tokens but avoids hardcoding them.
- Evidence: The script supports loading tokens from environment variables or a local configuration file. It explicitly includes logic in the
--dry-runflag to redact theAuthorizationheader in the output, preventing accidental exposure of credentials in logs or console output.
Audit Metadata