edgeone-makers

Fail

Audited by Gen Agent Trust Hub on Jun 30, 2026

Risk Level: CRITICALCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes shell hooks (hooks/*.sh) and utility scripts (scripts/archive-traffic.mjs) to automate platform integrations and maintenance tasks, such as running CLI commands or managing GitHub traffic data.
  • [EXTERNAL_DOWNLOADS]: The documentation references official CLI tools and project templates hosted on vendor domains (edgeone.site, edgeone.ai) and GitHub organizations (github.com/TencentEdgeOne), which is expected behavior for platform scaffolding tools.
  • [CREDENTIALS_UNSAFE]: Guidelines for the deployment workflow suggest storing authentication tokens in a local .edgeone/.token file. Security risks are mitigated by the explicit instruction to include this path in .gitignore to prevent source control leakage.
Recommendations
  • CRITICAL: 1 infected file(s) detected - DO NOT USE
  • Contains 17 malicious URL(s) - DO NOT USE
Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 30, 2026, 08:37 AM
Security Audit — agent-trust-hub — edgeone-makers