checkpoint-resume
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [DATA_INGESTION]: The skill manages state via a local JSON file (
.claude/pipeline-state.json). While this represents a surface for indirect prompt injection if the state file were modified by an external attacker, the skill implements structured data handling and schema validation (references/pipeline-state.schema.json) which follows security best practices. - [COMMAND_EXECUTION]: The skill utilizes standard command-line utilities such as
gitandjqfor version control and JSON processing. The provided scripts (scripts/init-pipeline.shandscripts/show-status.sh) use proper variable quoting and safe shell practices to prevent command injection. - [EXTERNAL_DOWNLOADS]: The skill does not download or execute remote code. It requires the presence of
jqon the host system, which is a well-known and standard utility for processing JSON in shell environments. - [PRIVILEGE_MANAGEMENT]: All operations are performed within the project context using standard user permissions. No use of
sudoor insecure file permission changes was detected.
Audit Metadata