enonic-sandbox-manager
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the Enonic CLI from official distribution points including repo.enonic.com, npm, and Homebrew.
- [REMOTE_CODE_EXECUTION]: Suggests installing the Enonic CLI on Linux by downloading and executing a shell script from the vendor's official repository (repo.enonic.com).
- [COMMAND_EXECUTION]: Executes a local helper script scripts/find-enonic-targets.mjs using Node.js to identify Enonic project configurations in the current directory.
- [COMMAND_EXECUTION]: Facilitates local development by running Enonic CLI commands for sandbox lifecycle management and project building.
- [PROMPT_INJECTION]: The skill identifies a surface for indirect prompt injection as it processes local project files. * Ingestion points: scripts/find-enonic-targets.mjs reads content from local workspace files like build.gradle and gradle.properties. * Boundary markers: Absent; the data is read directly without delimiters or safety instructions. * Capability inventory: The agent can execute shell commands through the Enonic CLI. * Sanitization: Basic extraction is performed via regex, but full sanitization of project-defined variables is not implemented.
Audit Metadata