devops-setup
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes shell commands using the GitHub CLI (
gh) and Pantheon'sTerminusCLI to automate repository creation, configure organization settings, and manage hosting infrastructure. - [EXTERNAL_DOWNLOADS]: The skill manages external software dependencies via
Composerand automatically installs theTerminusCLI tool as part of the project onboarding process. - [PROMPT_INJECTION]: The skill accepts a user-provided Git URL which is passed directly as an argument to a sub-agent task, representing an indirect prompt injection surface. * Ingestion points: User-supplied Git URL argument in the
/devops-setupcommand. * Boundary markers: Absent from the Task() interpolation prompt. * Capability inventory: Sub-agent has broad permissions to modify local files, execute commands, and perform network operations. * Sanitization: No validation or sanitization of the input Git URL is performed before it is processed by the agent.
Audit Metadata