vercel-sync
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- Indirect Prompt Injection (LOW): The skill instructs the agent to inspect
vc-buildlogs during forensic auditing. This introduces a surface for indirect prompt injection if malicious or untrusted build processes produce output designed to influence the agent's logic.\n - Ingestion points:
vc-buildlogs referenced in the troubleshooting section.\n - Boundary markers: Absent; no instructions are provided to the agent to treat log content as untrusted data.\n
- Capability inventory: Includes deployment via
bun x vercel, environment sync viavercel env pull, and dependency installation viabun install.\n - Sanitization: Absent; logs are processed as raw text.\n- External Downloads (LOW): The skill uses
bun installandbun xto download and execute tools likevercel,next, andlighthouse. While these come from trusted organizations (Vercel, Google), the reliance on external package execution is categorized as LOW per the Trusted External Source rule.\n- Data Exposure (SAFE): The commandbun x vercel env pull .env.localis used for environment synchronization. While this handles sensitive secrets, it is an intended function of the synchronization role using official tooling.
Audit Metadata