proxmox
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides numerous administrative command templates using Proxmox-specific tools like
qm,pct,pvesm, andpvecm. These are essential for the primary purpose of hypervisor administration and require root-level privileges. - [EXTERNAL_DOWNLOADS]: Provides instructions to configure official Proxmox community repositories and references well-known community helper scripts. These sources are considered trusted within the Proxmox ecosystem.
- [PROMPT_INJECTION]: The documentation includes templates that interpolate user-provided variables (such as VM IDs and names) into shell commands. This constitutes a surface for indirect prompt injection, but is a standard requirement for administrative functionality and is handled with appropriate context.
- [CREDENTIALS_UNSAFE]: Includes a configuration example for CIFS storage using a placeholder password ('secret'). This is a demonstrative placeholder and does not represent a sensitive credential leak.
Audit Metadata