ops-fires
Monitors production incidents by analyzing ECS health, Sentry errors, and CI failures, enabling quick dispatch of fix agents.
Install this skill
or
38/100
Security score
The ops-fires skill was audited on May 29, 2026 and we found 8 security issues across 3 threat categories, including 3 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
high line 32
Template literal with variable interpolation in command context
SourceSKILL.md
| 32 | 1. **Daemon health**: Read `${CLAUDE_PLUGIN_DATA_DIR:-$HOME/.claude/plugins/data/ops-ops-marketplace}/daemon-health.json` |
high line 43
Template literal with variable interpolation in command context
SourceSKILL.md
| 43 | 3. **Preferences**: Read `${CLAUDE_PLUGIN_DATA_DIR}/preferences.json` for `secrets_manager` config to know which vault to query. |
medium line 88
Template literal with variable interpolation in command context
SourceSKILL.md
| 88 | ```! |
medium line 94
Template literal with variable interpolation in command context
SourceSKILL.md
| 94 | ```! |
medium line 100
Template literal with variable interpolation in command context
SourceSKILL.md
| 100 | ```! |
high line 67
Curl to non-GitHub URL
SourceSKILL.md
| 67 | | `curl -H "Authorization: Bearer $SENTRY_AUTH_TOKEN" "https://sentry.io/api/0/projects/<org>/<proj>/issues/?query=is:unresolved"` | API fallback when MCP unavailable | JSON array | |
low line 67
External URL reference
SourceSKILL.md
| 67 | | `curl -H "Authorization: Bearer $SENTRY_AUTH_TOKEN" "https://sentry.io/api/0/projects/<org>/<proj>/issues/?query=is:unresolved"` | API fallback when MCP unavailable | JSON array | |
low line 223
External URL reference
SourceSKILL.md
| 223 | When diagnosing fires, use `WebFetch` to check AWS status page (`https://health.aws.amazon.com/health/status`), Vercel status, or third-party API status pages. |
Scanned on May 29, 2026
View Security Dashboard