devops
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: HIGHREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [REMOTE_CODE_EXECUTION] (LOW): Piped remote script execution detected. In
SKILL.md, the commandcurl https://sdk.cloud.google.com | bashis provided for installing the GCP SDK. This is a high-risk pattern; however, since the source domain is owned by a Trusted Organization (Google), the severity is downgraded to LOW per the [TRUST-SCOPE-RULE]. - [EXTERNAL_DOWNLOADS] (LOW): Unversioned package installation detected. The command
npm install -g wrangleris used to install Cloudflare's CLI. Under the analysis framework, unversioned installations from non-trusted organizations are typically MEDIUM risk, but this is downgraded to LOW as it is a standard tool required for the skill's core DevOps functionality.
Recommendations
- HIGH: Downloads and executes remote code from: https://sdk.cloud.google.com - DO NOT USE without thorough review
Audit Metadata