wizard
Pass
Audited by Gen Agent Trust Hub on Jul 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a local interactive wizard using standard Bash features for workflow automation.
- [COMMAND_EXECUTION]: The script uses common system utilities including
tput,grep,mktemp,mv, and the official GitHub CLI (gh) to facilitate configuration. These tools are used appropriately within the wizard's stated purpose of guiding manual procedures. - [DATA_EXPOSURE]: The script manages Stripe API keys by prompting the user and storing them in a local
.envfile. This is a standard development practice for secret management and is not considered a vulnerability in this context. - [EXTERNAL_DOWNLOADS]: No external code, scripts, or packages are downloaded. The wizard directs users to the official Stripe dashboard via a well-known URL and relies on tools already present on the user's system.
Audit Metadata