deployment
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill performs legitimate deployment operations using
bun runto execute local TypeScript scripts andkubectlto manage Kubernetes rollouts. These actions are aligned with the skill's primary purpose. - COMMAND_EXECUTION (LOW): The wrapper script
scripts/deploy-service.shpasses all command-line arguments ("$@") to the underlying scripts. While the service name is validated, there is a potential for argument injection if the calling agent provides unsanitized user input as additional flags. - EXTERNAL_DOWNLOADS (LOW): The use of
mise exec helm@3indicates dependency on an external tool manager which may download the Helm binary from its official source if it is not already present in the environment.
Audit Metadata