tilt
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill documents the use of Tilt's native capabilities to execute local commands for building images (
custom_build), managing local resources (local_resource), and performing Tiltfile evaluation (local()). These operations are the primary intended functions of the Tilt tool for orchestrating development workflows. - [EXTERNAL_DOWNLOADS]: The documentation references the official Tilt extensions repository on GitHub for extending functionality. This is a well-known service and the standard community source for Tilt extensions.
- [PROMPT_INJECTION]: No evidence of prompt injection or safety bypass patterns. The skill includes an 'Anti-Patterns' section that explicitly instructs the agent to seek user consent before performing significant environment changes like starting or stopping services.
- [DATA_EXFILTRATION]: No patterns associated with data exfiltration or credential harvesting were found. The API reference highlights that Tilt's default configuration includes secret scrubbing for logs to protect sensitive information.
Audit Metadata