wrangler
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the installation of official Cloudflare tools such as wrangler and create-cloudflare from the npm registry.
- [COMMAND_EXECUTION]: Provides instructions for executing a variety of Wrangler CLI commands for project initialization, local development, deployment, and database management.
- [DATA_EXFILTRATION]: Documents standard procedures for managing secrets via environment variables and Cloudflare's secret store, as well as legitimate database export functions.
- [PROMPT_INJECTION]: Ingestion points: 'wrangler tail' streams live logs from production workers which may contain untrusted data from external web requests. Boundary markers: None mentioned for log parsing. Capability inventory: Includes 'wrangler deploy', 'wrangler d1 execute', and 'wrangler secret put'. Sanitization: Not explicitly addressed for external log content.
Audit Metadata