sync-system-bus
Facilitates deployment of the system-bus-worker to a Kubernetes cluster, ensuring seamless syncing of package changes.
Install this skill
Security score
The sync-system-bus skill was audited on Mar 7, 2026 and we found 15 security issues across 4 threat categories, including 1 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
Template literal with variable interpolation in command context
| 43 | 3. Pushes `ghcr.io/joelhooks/system-bus-worker:${TAG}` and `:latest` |
Template literal with variable interpolation in command context
| 83 | ```bash |
Template literal with variable interpolation in command context
| 114 | ```bash |
Curl to non-GitHub URL
| 146 | curl -s http://localhost:3111/ | jq '.status' |
Curl to non-GitHub URL
| 147 | curl -X PUT http://localhost:3111/api/inngest # Force function sync |
Webhook reference - potential data exfiltration
| 120 | Talon is a Rust binary that supervises the worker process. It leases secrets from `agent-secrets` and injects them as env vars. When adding new webhook secrets or changing supervision behavior: |
Webhook reference - potential data exfiltration
| 157 | | `front_rules_webhook_secret` | `FRONT_WEBHOOK_SECRET` | |
Webhook reference - potential data exfiltration
| 159 | | `vercel_webhook_secret` | `VERCEL_WEBHOOK_SECRET` | |
Webhook reference - potential data exfiltration
| 160 | | `joelclaw_webhook_secret` | `JOELCLAW_WEBHOOK_SECRET` | |
Access to hidden dotfiles in home directory
| 136 | cp target/release/talon ~/.local/bin/talon |
Access to hidden dotfiles in home directory
| 137 | codesign -fs - ~/.local/bin/talon |
Access to hidden dotfiles in home directory
| 167 | | Binary | `~/.local/bin/talon` | |
Access to hidden dotfiles in home directory
| 170 | | Logs | `~/.local/log/talon.log` / `talon.err` | |
External URL reference
| 146 | curl -s http://localhost:3111/ | jq '.status' |
External URL reference
| 147 | curl -X PUT http://localhost:3111/api/inngest # Force function sync |