upstash-cli
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: Installs the official @upstash/cli package from the NPM registry to provide management capabilities.
- [COMMAND_EXECUTION]: Executes the
upstashcommand to interact with the Upstash Developer API for resource management. - [PROMPT_INJECTION]: The skill processes structured JSON output from the Upstash API. Ingestion points: all CLI command outputs (e.g.,
upstash redis list). Boundary markers: absent. Capability inventory: includes resource creation, deletion, and credentials rotation. Sanitization: relies on the CLI's JSON formatting. This provides a potential surface for indirect prompt injection if service metadata is externally controlled. - [SAFE]: Authentication is handled through standard environment variables and local configuration files (~/.config/upstash/config.json), adhering to secure credential management practices.
Audit Metadata