bash-scripting
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The provided Bash template implements 'set -euo pipefail', a defensive programming best practice that ensures scripts exit immediately upon encountering errors or undefined variables, preventing unpredictable and potentially insecure behavior.
- [SAFE]: The workflow incorporates security-positive tools like ShellCheck for static analysis and Bats for automated testing, which are standard practices for identifying vulnerabilities and ensuring reliability in shell scripts.
- [SAFE]: No evidence of prompt injection, data exfiltration, or malicious command execution was found within the instructions or the script template.
- [SAFE]: All referenced 'skills' (e.g., @bash-pro, @shellcheck-configuration) are internal workflow components and do not involve downloading or executing code from untrusted external sources.
Audit Metadata