Skills
skills/replayio/skills/replay-cli/Gen Agent Trust Hub

replay-cli

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (LOW): The skill provides instructions to install the replayio package globally using standard Node.js package managers (npm, yarn, pnpm, bun). While these are external dependencies, replayio is the official package for the Replay.io service.
  • [COMMAND_EXECUTION] (LOW): The skill includes a command to modify the Claude MCP configuration (claude --mcp-config). This command registers a remote MCP server at https://dispatch.replay.io/nut/mcp and configures it to use the REPLAY_API_KEY for authorization. This is a persistent configuration change that connects the agent to a remote endpoint provided by the Replay.io service.
  • [CREDENTIALS_UNSAFE] (SAFE): The skill documentation advises the user to store their API key in an environment variable (REPLAY_API_KEY) rather than hardcoding it, which aligns with security best practices for credential management.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:08 PM