vercel-cli-with-tokens
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [Command Execution]: The skill utilizes the Vercel CLI (
vercel) and Git (git) to manage project deployments. These are standard tools required for the skill's intended functionality of deploying and managing cloud projects. - [External Dependencies]: It includes instructions to install the Vercel CLI via
npm install -g vercel. As the package is a well-known tool from a recognized service provider, this is a routine and expected setup step. - [Credential Management]: The skill emphasizes using environment variables (
VERCEL_TOKEN) and CLI flags (--token) for authentication. This approach is a security best practice for automated environments, as it avoids storing long-term credentials in local configuration files or performing interactive logins. - [Data Access Considerations]: The instructions involve interacting with project configuration files (like
.vercel/project.json) and environment variable management (vercel env pull). These operations are limited to the specific directory and project scope defined by the user and are necessary for deployment synchronization.
Audit Metadata