setting-up-devbox
Pass
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill relies on the 'hogli' CLI for local setup and workspace management, including optional network configuration commands that may require elevated privileges on Linux platforms.
- [REMOTE_CODE_EXECUTION]: Facilitates the execution of commands on remote developer instances via SSH through the
hogli devbox:execcommand, which is the intended core functionality of the tool. - [EXTERNAL_DOWNLOADS]: Directs the automated installation of the 'coder' CLI and 'mutagen' synchronization tool from well-known external services during the initialization phase.
- [SAFE]: Incorporates explicit security instructions that advise against pasting tokens into terminal history or chat transcripts, instead promoting the use of secure file-based or interactive input methods.
- [SAFE]: All external repository links point to the author's official GitHub organization or well-known development service providers.
Audit Metadata