sfnext-deployment

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill documents standard deployment procedures for Storefront Next applications using the pnpm package manager and the sfnext CLI. All commands (e.g., pnpm build, pnpm push) are standard for modern web development workflows and deployment to the vendor's Managed Runtime platform.
  • [SAFE]: Credentials and configuration examples (such as clientId, organizationId, and COMMERCE_API_SLAS_SECRET) use clearly identified placeholder values rather than hardcoded secrets. It correctly advises on the use of the MRT Dashboard and local .env files for secure secret management.
  • [SAFE]: No suspicious patterns such as prompt injection, obfuscation, remote code execution, or unauthorized data exfiltration were detected. The skill's functionality aligns with its stated purpose of managing deployments.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 11:40 PM
Security Audit — agent-trust-hub — sfnext-deployment