skills/jeremylongshore/claude-code-plugins-plus-skills/fireflies-multi-env-setup/Gen Agent Trust Hub
fireflies-multi-env-setup
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill implements environment isolation and secret management using industry-standard tools and practices. It follows the principle of least privilege by recommending environment-specific keys and utilizing dedicated secret management services.
- [COMMAND_EXECUTION]: The skill uses Bash(aws:), Bash(gcloud:), and Bash(vault:*) to interact with secret management services. These commands are used legitimately to retrieve environment-specific credentials and do not represent malicious intent.
- [PROMPT_INJECTION]: The skill performs dynamic loading of JSON configuration files based on the NODE_ENV variable. It mitigates potential injection risks such as Path Traversal by validating the environment string against a strict whitelist of 'development', 'staging', and 'production' before performing the require() call.
Audit Metadata