Skills
skills/zeabur/zeabur-claude-plugin/zeabur-template-backup/Gen Agent Trust Hub

zeabur-template-backup

Pass

Audited by Gen Agent Trust Hub on Apr 4, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill downloads template configuration files (YAML) from zeabur.com. This is the official domain of the skill author and is used for its intended purpose of template retrieval.
  • [COMMAND_EXECUTION]: Instructs the agent to use npx zeabur@latest to invoke the vendor's CLI. This is a standard method for accessing official tooling from the author 'zeabur'.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes metadata (template names) from externally downloaded YAML files and interpolates them into shell commands for file management and git operations.
  • Ingestion points: External YAML files are fetched from zeabur.com/templates/{TEMPLATE_CODE}.yaml (SKILL.md).
  • Boundary markers: No explicit delimiters or warnings to ignore embedded instructions are present.
  • Capability inventory: The agent performs shell operations including mkdir, mv, and git commit (SKILL.md).
  • Sanitization: The instructions suggest converting names to kebab-case for directory creation, which provides implicit sanitization for file paths, though the original name is used directly in git commit messages.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 4, 2026, 06:55 AM