coolify
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references an installation script for the Coolify CLI hosted on the official coollabsio GitHub repository (github.com/coollabsio/coolify-cli). This is the legitimate and expected source for the tool managed by the skill.
- [REMOTE_CODE_EXECUTION]: Includes instructions to install the Coolify CLI by piping a remote shell script directly to bash. While this is a high-risk execution pattern, the source is the official vendor repository for the software being managed.
- [COMMAND_EXECUTION]: Provides commands to interact with the Coolify instance using the coolify CLI and curl. These operations are necessary for the skill's primary function of infrastructure and deployment management.
- [DATA_EXFILTRATION]: The skill includes the capability to read local environment files (e.g., .env.production) to synchronize secrets with the Coolify instance. This is a core, intended feature of the DevOps management tool.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection attack surface.
- Ingestion points: Reads .env files and deployment logs (SKILL.md)
- Boundary markers: Absent
- Capability inventory: Shell command execution via coolify CLI and network operations via curl
- Sanitization: Absent
Audit Metadata