mirrord-quickstart
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references an installation script hosted on the vendor's official GitHub repository at 'https://raw.githubusercontent.com/metalbear-co/mirrord/main/scripts/install.sh'. As this resource belongs to the skill author (MetalBear), it is considered a legitimate vendor resource.
- [REMOTE_CODE_EXECUTION]: The skill provides a command to execute the vendor's installation script by piping 'curl' output directly to 'bash'. This is a standard installation method for this tool and originates from a trusted source related to the skill.
- [COMMAND_EXECUTION]: The skill instructs the agent to help users run several system commands, including 'kubectl' for cluster status verification and 'mirrord exec' for connecting local applications to Kubernetes pods. These operations are essential for the tool's core functionality and do not involve unauthorized privilege escalation.
Audit Metadata