rhdh
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The CLI uses the
subprocessmodule to execute system commands includinggit,gh,podman,docker,jq, andjira. These operations are integral to the skill's functionality for repository management and environment diagnostics. The implementation uses list-based arguments for command execution, which is a security best practice to prevent shell injection. - [EXTERNAL_DOWNLOADS]: The skill manages the cloning and synchronization of repositories from the
redhat-developerGitHub organization. These downloads are necessary for setting up the RHDH developer workspace and managing plugin overlays.
Audit Metadata