surge-configuration
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill acts as a reference and assistant for Surge proxy configuration, providing helpful snippets and best practices for profile authoring and troubleshooting.
- [EXTERNAL_DOWNLOADS]: The skill fetches documentation and release logs from official Surge domains (nssurge.com, manual.nssurge.com, and kb.nssurge.com). These are well-known and legitimate service domains for the Surge utility and do not represent a security risk.
- [DATA_EXFILTRATION]: No evidence of credential harvesting, unauthorized file access, or data exfiltration was found. Configuration examples use standard placeholder patterns.
- [PROMPT_INJECTION]: The instructions do not contain attempts to bypass safety filters, override agent behavior, or extract system prompts.
- [COMMAND_EXECUTION]: The skill provides documentation on shell-like configuration syntax for Surge (e.g., !include), but does not execute arbitrary shell commands on the host system.
Audit Metadata