agent-rules
Warn
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSSAFE
Full Analysis
- [COMMAND_EXECUTION]: The
scripts/verify-commands.shscript executes shell commands extracted directly fromAGENTS.mdfiles usingbash -c. While it employs a whitelist of 'safe' base commands (such asnpm,make,curl, andpython), the script does not sanitize the full command string. This allows for execution of malicious command chains, such as pipes to interpreters, if they are present in the documentation being analyzed. This behavior is associated with the skill's core purpose of verifying command accuracy but represents a significant security surface. - [EXTERNAL_DOWNLOADS]: Several scripts, including
scripts/extract-github-settings.shandscripts/extract-github-rulesets.sh, perform network requests toapi.github.comvia the GitHub CLI. These operations are restricted to retrieving repository metadata and target a well-known, trusted service, which is appropriate for the skill's stated intent. - [SAFE]: The skill includes numerous template and example files (e.g.,
references/examples/fastapi-app/.env.example). These files correctly use generic placeholders for sensitive data like database passwords and API keys, following industry-standard safety practices for example configurations.
Audit Metadata