kastell-ops
Kastell-ops provides CLI patterns and architecture for managing self-hosted servers, enhancing security and provisioning workflows.
Install this skill
or
65/100
Security score
The kastell-ops skill was audited on Mar 25, 2026 and we found 3 security issues across 2 threat categories, including 2 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
high line 123
Piping content to bash shell
SourceSKILL.md
| 121 | ```bash |
| 122 | # Parse audit JSON into 5 security domain summaries |
| 123 | kastell audit --server <name> --json | bash scripts/parse_audit.sh |
| 124 | |
| 125 | # Generate fleet-wide server score table |
high line 126
Piping content to bash shell
SourceSKILL.md
| 124 | |
| 125 | # Generate fleet-wide server score table |
| 126 | kastell fleet --json | bash scripts/fleet_report.sh |
| 127 | |
| 128 | # Compare audit check count vs test coverage |
medium line 112
Access to home directory dotfiles
SourceSKILL.md
| 110 | - `sanitizedEnv` for subprocess calls |
| 111 | - `sanitizeResponseData()` whitelist approach for API error responses |
| 112 | - Config dir: `~/.kastell/` (auto-migrated from `~/.quicklify/`) |
| 113 | - `PROVIDER_REGISTRY` = single source of truth for providers |
| 114 | - `withProviderErrorHandling` HOF for consistent provider error handling |
Scanned on Mar 25, 2026
View Security DashboardInstall this skill with one command
/learn @kastelldev/kastell-ops