wrangler-coder
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [EXTERNAL_DOWNLOADS] (INFO): The skill instructs the user to install the 'wrangler' CLI from npm and '@cloudflare/vitest-pool-workers' for testing. These are official packages from a trusted organization (Cloudflare).
- [COMMAND_EXECUTION] (LOW): The skill provides numerous 'wrangler' CLI commands for managing Cloudflare resources (D1, R2, KV). These are standard development operations and do not include arbitrary or hidden command execution.
- [CREDENTIALS_UNSAFE] (SAFE): While the documentation mentions environment variables like 'CLOUDFLARE_API_TOKEN', it correctly advises users to use placeholders ('your-api-token') or 1Password ('op://...') and emphasizes using 'wrangler secret put' to avoid committing secrets to version control.
- [PROMPT_INJECTION] (SAFE): No instructions designed to override agent behavior or bypass safety filters were found in the markdown or metadata.
Audit Metadata