fix-stripe
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill identifies issues based on the output of the
/check-stripecommand and subsequently performs file system modifications and shell command execution. - Ingestion points: Output from the
/check-stripetool (referenced in the Process section). - Boundary markers: Absent; the skill does not specify delimiters for the input data.
- Capability inventory: File system writes (updating TypeScript/Next.js files),
gitcommand execution,stripeCLI execution, andcurlexecution. - Sanitization: Absent; the skill lacks explicit validation or escaping of the ingested issue descriptions before acting upon them.
- Data Exposure & Exfiltration (SAFE): The skill specifically targets and remediates hardcoded secrets (
sk_test_...) by replacing them with environment variables (process.env.STRIPE_SECRET_KEY), which is a security best practice. All secrets shown in the documentation are non-functional placeholders. - Command Execution (SAFE): Uses standard development tools including
git,curl(targetinglocalhost), and the officialstripeCLI for verification purposes.
Audit Metadata