vercel-deployment
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation references the installation of the official Vercel CLI (
npm i -g vercel) and the@vercel/configpackage. These are standard development tools provided by Vercel, a well-known cloud infrastructure service. - [COMMAND_EXECUTION]: Provides a detailed reference for Vercel CLI commands, including
vercel deploy,vercel build,vercel env pull, andvercel promote. These are standard administrative commands intended for project management and CI/CD integration. - [CREDENTIALS_UNSAFE]: Guidance is provided for managing environment variables and GitHub secrets (e.g.,
VERCEL_TOKEN,DATABASE_URL). The skill uses non-functional placeholders in its examples and correctly highlights best practices, such as using prefixes to prevent the exposure of sensitive secrets to the client-side browser.
Audit Metadata