mcloud-variables
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
mcloudCLI andjqfor cloud environment management. These tools are restricted in the YAML frontmatter to specific subcommands (mcloud variables*), adhering to the principle of least privilege. - [DATA_EXPOSURE]: The skill provides access to environment variables, which may include secrets. However, it contains a critical constraint instructing the agent never to use the
--revealflag unless explicitly requested by the user, mitigating the risk of accidental secret exposure in logs or terminal history. - [SAFE]: The functionality is consistent with the stated purpose of a cloud management tool from a known vendor (medusajs). There is no evidence of exfiltration, obfuscation, or unauthorized access.
Audit Metadata