edgeone-pages-deploy
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill initiates the installation of the official
edgeoneCLI package from the NPM registry. This is a standard requirement for the skill's stated purpose of deploying projects to Tencent's infrastructure. - [COMMAND_EXECUTION]: Various shell commands and CLI operations are performed, including
edgeone pages deploy,npm install, and standard file system utilities likemkdirandgrep. These are used appropriately to manage the deployment lifecycle and local project state. - [CREDENTIALS_UNSAFE]: The skill implements a secure workflow for handling API tokens. It prompts users to provide tokens manually and offers to store them in a local
.edgeone/.tokenfile. Critically, it includes an automated step to add this sensitive file to.gitignore, preventing accidental exposure in version control systems.
Audit Metadata