edgeone-makers
Fail
Audited by Gen Agent Trust Hub on Jun 30, 2026
Risk Level: CRITICALCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes shell hooks (
hooks/*.sh) and utility scripts (scripts/archive-traffic.mjs) to automate platform integrations and maintenance tasks, such as running CLI commands or managing GitHub traffic data. - [EXTERNAL_DOWNLOADS]: The documentation references official CLI tools and project templates hosted on vendor domains (
edgeone.site,edgeone.ai) and GitHub organizations (github.com/TencentEdgeOne), which is expected behavior for platform scaffolding tools. - [CREDENTIALS_UNSAFE]: Guidelines for the deployment workflow suggest storing authentication tokens in a local
.edgeone/.tokenfile. Security risks are mitigated by the explicit instruction to include this path in.gitignoreto prevent source control leakage.
Recommendations
- CRITICAL: 1 infected file(s) detected - DO NOT USE
- Contains 17 malicious URL(s) - DO NOT USE
Audit Metadata