knock-cli
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of legitimate documentation and rules for the Knock CLI, with no evidence of malicious intent or security vulnerabilities detected.
- [EXTERNAL_DOWNLOADS]: Recommends installing the
@knocklabs/clipackage via npm or Homebrew; these are official distribution channels for the vendor's software. - [CREDENTIALS_UNSAFE]: Authentication instructions for the
KNOCK_SERVICE_TOKENuse environment variables and placeholders, adhering to secret management best practices. - [COMMAND_EXECUTION]: All described commands are standard operations for the Knock CLI (e.g., pull, push, validate) and do not involve the execution of arbitrary or unsafe code.
- [SAFE]: Features like Liquid personalization and
http_fetchare documented as standard platform capabilities for creating dynamic notification templates.
Audit Metadata