devops
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill passes all security checks with no malicious code or significant vulnerabilities detected.
- [COMMAND_EXECUTION]: The
scripts/cloudflare_deploy.pyutility invokes the CloudflarewranglerCLI usingsubprocess.run. The script prevents command injection by validating the environment input against a strict allowlist of 'production', 'staging', and 'dev'. - [EXTERNAL_DOWNLOADS]: The documentation provides links and instructions for downloading official CLI tools from trusted vendors, including Google Cloud and Cloudflare. These references follow established industry standards for tool installation.
- [CREDENTIALS_UNSAFE]: Credentials and API tokens are managed via an environment variable template in
.env.examplethat utilizes descriptive placeholders. No actual secrets or private keys are hardcoded in the skill's source files.
Audit Metadata