netlify-deploy
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses
npx netlifywhich downloads and executes the official Netlify CLI from the NPM registry. Netlify is a well-known technology service, and the use of its official tooling is considered standard practice for deployment tasks.\n- [COMMAND_EXECUTION]: The skill performs shell command execution to manage the deployment lifecycle, includingnpx netlifyfor site management,npm installfor dependency management, andgitfor repository linking. These actions are essential for the skill's primary purpose.\n- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection because it instructs the agent to ingest and act upon data from untrusted project files such aspackage.json,netlify.toml, and lockfiles.\n - Ingestion points: Project configuration files and environment metadata located in the working directory (e.g.,
package.json,netlify.toml,git remote).\n - Boundary markers: Absent. The skill instructions do not specify the use of delimiters or 'ignore' instructions when reading file content.\n
- Capability inventory: The skill has access to terminal command execution (Netlify CLI, NPM, Git) and file system access.\n
- Sanitization: Absent. There is no mention of validating or escaping the contents of the configuration files before they are processed by the agent.
Audit Metadata