vercel-cli
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Command Execution Framework: The skill is designed to guide an AI agent in using the Vercel CLI (
vercelorvc). This involves executing shell commands to manage deployments, environment variables, and project configurations. - [Evidence]: The skill uses
bashPatternsand reference files (e.g.,references/deployment.md) that contain numerous CLI command examples. - Indirect Prompt Injection Surface: The skill processes user requests via the
$ARGUMENTSplaceholder in the command template. While this is a standard interface for agent skills, it represents an entry point for untrusted data that could attempt to influence CLI command arguments. - [Ingestion Point]: User requests are captured within
<user-request>tags incommand/vercel.md. - [Boundary Markers]: The skill uses XML-style tags (
<user-request>) to delimit user input from instructions. - [Capability Inventory]: The skill has the capability to execute Vercel CLI commands, which can perform network operations (deployments) and read/write local project configuration files (
.vercel/). - [Sanitization]: The instructions emphasize the use of official CLI flags and recommend against risky patterns like hardcoding tokens, which provides a layer of operational safety.
- Trusted External Resources: The skill references official documentation and package registries associated with Vercel, ensuring that dependencies and information come from verified sources.
- [Evidence]: Links to
vercel.comand instructions to install thevercelpackage from NPM are consistent with the vendor's official infrastructure.
Audit Metadata