edgeone-makers-deploy

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs the official 'edgeone' command-line interface from the public NPM registry ('npm install -g edgeone@latest'). This download is expected as it is the primary tool required for interacting with the vendor's platform.
  • [COMMAND_EXECUTION]: The skill utilizes shell commands to manage deployments, including 'edgeone login', 'edgeone whoami', and 'edgeone makers deploy'. These commands are necessary for the skill's stated purpose and do not involve suspicious parameters or privilege escalation.
  • [CREDENTIALS_UNSAFE]: The skill manages authentication tokens but explicitly follows security best practices. It instructs the agent to save tokens to a local file ('.edgeone/.token') and ensures this file is added to '.gitignore' to prevent credentials from being accidentally committed to version control systems.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 10:57 AM
Security Audit — agent-trust-hub — edgeone-makers-deploy