jfrog-manage-members
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs project member management on the JFrog Platform, which is consistent with its stated purpose and vendor context.
- [SAFE]: Credential management is handled securely by loading authentication tokens from environment variables or a .env file, avoiding hardcoded secrets.
- [SAFE]: Employs pre-assignment validation to verify the existence of users and groups before attempting to modify project roles, reducing the risk of unauthorized or erroneous assignments.
- [SAFE]: Uses double-quoting for shell variables within command execution blocks to mitigate the risk of command injection from input parameters.
Audit Metadata