bash-scripting
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No instructions attempting to override agent behavior, bypass safety filters, or extract system prompts were detected. The copy-paste prompts are standard instructions for invoking related sub-skills.
- [REMOTE_CODE_EXECUTION]: The skill does not contain any commands to download or execute external scripts from remote URLs. References to other skills like '@bash-pro' are internal to the workflow environment.
- [DATA_EXFILTRATION]: No network operations, file read commands for sensitive paths (e.g., SSH keys, AWS credentials), or hardcoded secrets were found.
- [COMMAND_EXECUTION]: The provided bash template is a static example of shell scripting best practices (e.g., set -euo pipefail) and does not execute arbitrary or dangerous code on the host system.
- [OBFUSCATION]: All content is written in clear markdown and shell script text. No Base64, zero-width characters, or homoglyph attacks were identified.
- [CREDENTIALS_UNSAFE]: No hardcoded API keys, tokens, or other sensitive credentials are present in the skill metadata or script templates.
Audit Metadata