hyva-exec-shell-cmd
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill provides templates and a helper script to facilitate running shell commands within containerized Magento environments. This is a standard developer utility and does not execute arbitrary code on its own.
- REMOTE_CODE_EXECUTION (SAFE): No remote execution or external script downloads were detected. The skill relies on a local script (
scripts/detect_env.sh) for environment identification. - DATA_EXFILTRATION (SAFE): The detection script performs basic checks for the presence of local files (like
.ddev/config.yaml) and environment variable keys to identify the platform. It does not read sensitive data or communicate with external servers. - PROMPT_INJECTION (SAFE): The instructions are clearly defined for technical integration and do not contain attempts to bypass agent safety filters or override system instructions.
Audit Metadata