marketplace-deploy
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- External Resource Access: The skill includes instructions to install the Vercel CLI via npm. This is a security consideration as it involves downloading external code; however, it targets the official tool for a well-known service, which is a standard part of the deployment process.
- Command Execution: The instructions guide the user through various command-line operations to manage the deployment. These commands are necessary for the skill's functionality and are used as intended within the Vercel ecosystem.
- Sensitive Data Handling: The skill mentions the configuration of sensitive environment variables like AUTH0_SECRET. This is an area to review, but the skill correctly recommends using the official vercel env add command to handle these credentials securely.
Audit Metadata