moai-lang-shell
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill proactively implements and recommends defensive scripting patterns, such as the use of 'set -euo pipefail' to prevent silent failures and ensure strict execution environments.
- [COMMAND_EXECUTION]: While the skill's primary function is to facilitate command execution through shell scripts, it incorporates extensive safety measures, including input validation functions, trap-based cleanup, and local variable scoping to mitigate common shell-related vulnerabilities.
- [CREDENTIALS_UNSAFE]: Documentation examples contain placeholder API keys (e.g., 'secret123'). These are clearly intended for illustrative purposes and do not pose a security risk as hardcoded secrets.
- [SAFE]: The skill provides guidance on integrating security-focused tools such as ShellCheck (static analysis) and bats-core (testing) into the development workflow.
Audit Metadata