broker-configurations
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- Privilege Escalation (HIGH): The script
scripts/setup-redis.shmakes extensive use ofsudoto install system packages (redis-server,redis-tools) and modify system-wide configuration files located in/etc/redis/. While this is aligned with the skill's purpose, it represents a significant security surface if executed by an agent without oversight. - Command Execution (MEDIUM): The
scripts/setup-redis.shscript programmatically modifies security settings, specifically disablingprotected-modein Redis. While it includes a warning for production, the automated downgrade of security defaults is a concern. - Dynamic Execution (MEDIUM): The script
scripts/test-broker-connection.shdynamically generates Python scripts in the/tmpdirectory and executes them usingpython3to verify connectivity. It also executes multi-line Python code blocks passed via heredocs. - External Downloads (MEDIUM): Setup scripts trigger installations through system package managers (
apt-get,yum,brew), which involves downloading and installing unverified external binaries from repository mirrors.
Audit Metadata