Webdesign
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill automates web development workflows by executing standard CLI tools including
bun,wrangler,vercel,gh,aws, andpatch. These commands are used for project building, testing, and deployment to well-known hosting platforms. - [EXTERNAL_DOWNLOADS]: The skill interacts with trusted services and official APIs from providers like Cloudflare, Vercel, Netlify, and AWS for deployment and preview functionality. All remote interactions are directed toward established, well-known technology vendors.
- [SAFE]: A significant security best practice is implemented in the
DeployDesignworkflow, which performs an automated scan for sensitive patterns (API keys, private keys, etc.) in the build output directory usingrgbefore allowing a deployment to proceed. - [DATA_EXPOSURE]: The skill transmits a status update to a local endpoint (
http://localhost:31337/notify) to support a local voice notification feature. As this communication is restricted tolocalhostand contains only non-sensitive status messages, it does not represent an exfiltration risk.
Audit Metadata