scripting-bash
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): No malicious patterns or security vulnerabilities were detected in the skill files. The instructions and reference materials focus exclusively on promoting secure, defensive Bash scripting practices following modern industry standards.
- [COMMAND_EXECUTION] (SAFE): The skill demonstrates safe command execution patterns, such as using timeouts for network calls (curl) and implementing the '--' delimiter to prevent flag injection attacks in commands like rm. These are proactive defensive measures.
- [REMOTE_CODE_EXECUTION] (SAFE): No remote code execution patterns, unauthorized downloads, or untrusted execution paths were identified. The reference material includes an example of using the eval command to restore shell variable state (a Bash 5.1 feature), but it is presented as a specific language feature for state management rather than an exploitable vulnerability.
Audit Metadata