skills/jeremylongshore/claude-code-plugins-plus-skills/managing-environment-configurations/Gen Agent Trust Hub
managing-environment-configurations
Warn
Audited by Gen Agent Trust Hub on Mar 21, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [COMMAND_EXECUTION]: The
scripts/generate_config.pyfile includes agenerate_scriptmethod that takes a user-supplied template and writes it directly to a shell script file without validation or sanitization. - [COMMAND_EXECUTION]: The
scripts/generate_config.pyfile usesfile_path.chmod(0o755)to make the generated shell scripts executable. This establishes a mechanism where the agent can create and then run arbitrary executable code on the host system. - [DATA_EXFILTRATION]: The
SKILL.mdinstructions guide the agent to audit and extract sensitive information from.envfiles, Kubernetes Secrets, and cloud parameter stores. While this aligns with the skill's stated purpose, it creates a high-risk surface for credential exposure and potential exfiltration if the agent processes untrusted inputs.
Audit Metadata