posix-shell-pro

Provides expertise in POSIX sh scripting for maximum portability across Unix-like systems, ensuring compatibility and best practices.

Install this skill

9/100

Security score

The posix-shell-pro skill was audited on Jun 11, 2026 and we found 11 security issues across 3 threat categories, including 1 critical. Review the findings below before installing.

Categories Tested

Security Issues

high line 52

Template literal with variable interpolation in command context

SourceSKILL.md

52	- No `${var//pattern/replacement}` substitution

high line 260

Template literal with variable interpolation in command context

SourceSKILL.md

260	- Using bash-specific parameter expansion: `${var//pattern/replacement}`

high line 274

Template literal with variable interpolation in command context

SourceSKILL.md

274	- String Replacement: `echo "$str" \| sed 's/old/new/g'` or use parameter expansion `${str%suffix}`

high line 275

Template literal with variable interpolation in command context

SourceSKILL.md

275	- Default Values: `value=${var:-default}` assigns default if var unset or null

critical line 273

Access to /etc/passwd

SourceSKILL.md

273	- Field Parsing: `IFS=:; while read -r user pass uid gid; do ...; done < /etc/passwd`

low line 297

External URL reference

SourceSKILL.md

297	- [POSIX Shell Command Language](https://pubs.opengroup.org/onlinepubs/9699919799/utilities/V3_chap02.html) - Official POSIX.1-2024 specification

low line 298

External URL reference

SourceSKILL.md

298	- [POSIX Utilities](https://pubs.opengroup.org/onlinepubs/9699919799/idx/utilities.html) - Complete list of POSIX-mandated utilities

low line 299

External URL reference

SourceSKILL.md

299	- [Autoconf Portable Shell Programming](https://www.gnu.org/software/autoconf/manual/autoconf.html#Portable-Shell) - Comprehensive portability guide from GNU

low line 302

External URL reference

SourceSKILL.md