ss-cli
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill describes legitimate operations for a secret management CLI tool. It prioritizes security best practices, such as recommending subprocess environment injection over writing sensitive credentials to persistent storage files.
- [DATA_EXFILTRATION]: Although the skill handles credentials and tokens, all documented operations are consistent with authorized secret management workflows (e.g., fetching from a secure server and deploying to local or remote environments). No suspicious network exfiltration patterns were detected.
- [COMMAND_EXECUTION]: The instructions involve executing local commands via
ss-cli runand remote commands viasshwithsudo. These are standard administrative tasks for deploying configuration files and managing service lifecycles within a DevOps context.
Audit Metadata