pp-vercel-admin
Warn
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to download and install a custom binary tool ('vercel-admin-pp-cli') from the author's own repositories and npm packages.
- Evidence: 'npx -y @mvanhorn/printing-press-library install vercel-admin --cli-only'
- Evidence: 'go install github.com/mvanhorn/printing-press-library/library/cloud/vercel-admin/cmd/vercel-admin-pp-cli@latest'
- [REMOTE_CODE_EXECUTION]: The skill facilitates the execution of remote code through its installation procedures and its core functionality.
- The 'npx' and 'go install' commands download and execute code from remote sources at installation time.
- The 'sandboxes run-session-command' provides a direct interface to execute shell commands within a remote session environment.
- [DATA_EXFILTRATION]: The skill contains a built-in feature that allows routing command results to an external web service.
- The '--deliver webhook:' flag allows the output of any administrative command—including those that create or retrieve authentication tokens—to be POSTed to an arbitrary external URL.
- [COMMAND_EXECUTION]: The skill invokes a local binary ('vercel-admin-pp-cli') with arguments constructed from user-provided natural language input, which is resolved via a 'which' command logic.
- [CREDENTIALS_UNSAFE]: The skill provides commands specifically designed to manage authentication tokens, increasing the risk of credential exposure if outputs are misrouted.
- Evidence: 'vercel-admin-pp-cli user create-auth-token' and 'vercel-admin-pp-cli user get-auth-token'.
Audit Metadata