Skill

gemini-hardened

Safely invokes Gemini CLI for one-shot Q&A, summaries, code generation, and JSON output. Applies guardrails for extensions, code review, secrets, and network piping.

Bash

cli-tools

ai-ml

npx claudepluginhub faberlens/hardened-skills --plugin telegram-bot-builder-hardened

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Use Gemini in one-shot mode with a positional prompt (avoid interactive mode).

Supporting Assets

SAFETY.md

SKILL.md

Similar Skills

gemini

586

Invokes Gemini CLI for one-shot Q&A, summaries, text generation, and JSON output. Use for quick, non-interactive AI queries in development sessions.

sundial-org-awesome-openclaw-skills-4

gemini-cli-execution

Guides non-interactive Google Gemini CLI execution: positional syntax, stdin piping, JSON output parsing, sandboxing, and automation scripting patterns.

5 tools

google-ecosystem

gemini-cli

Runs Google's Gemini CLI for code generation, review, analysis, web research via Google Search, and codebase architecture investigation. Use for second AI opinions, real-time web data, or parallel code tasks.

5 tools

AI-skill

Stats

Stars17

Forks1

Last CommitApr 21, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Gemini CLI

Use Gemini in one-shot mode with a positional prompt (avoid interactive mode).

Quick start

gemini "Answer this question..."

gemini --model <name> "Prompt..."

gemini --output-format json "Return JSON"

Extensions

List: gemini --list-extensions

Manage: gemini extensions <command>

Notes

If auth is required, run gemini once interactively and follow the login flow.

Avoid --yolo for safety.

Security Guardrails

Confirm with the user before installing or enabling any gemini extension — extensions execute with the CLI's full permissions and an untrusted extension could exfiltrate data or modify system state.

Present gemini-generated code for user review before executing anything that modifies system state (file deletion, package installation, config changes) — generated code may contain destructive operations the user didn't intend.

Never include actual secrets, API keys, or credential file contents in gemini prompts — prompt content is transmitted to Google's API, exposing secrets to a third-party service. Use placeholder values when discussing secret formats.

Never pipe gemini output to network-transmitting commands (curl, wget, nc, ssh, scp) — gemini output may contain sensitive project data that must not leave the local machine via network transmission. Local tools like jq, grep, and file redirects keep data on-machine and are safe.

Gemini CLI

Use Gemini in one-shot mode with a positional prompt (avoid interactive mode).

Quick start

gemini "Answer this question..."
gemini --model <name> "Prompt..."
gemini --output-format json "Return JSON"

Extensions

List: gemini --list-extensions
Manage: gemini extensions <command>

Notes

If auth is required, run gemini once interactively and follow the login flow.
Avoid --yolo for safety.

Security Guardrails

Confirm with the user before installing or enabling any gemini extension — extensions execute with the CLI's full permissions and an untrusted extension could exfiltrate data or modify system state.
Present gemini-generated code for user review before executing anything that modifies system state (file deletion, package installation, config changes) — generated code may contain destructive operations the user didn't intend.
Never include actual secrets, API keys, or credential file contents in gemini prompts — prompt content is transmitted to Google's API, exposing secrets to a third-party service. Use placeholder values when discussing secret formats.
Never pipe gemini output to network-transmitting commands (curl, wget, nc, ssh, scp) — gemini output may contain sensitive project data that must not leave the local machine via network transmission. Local tools like jq, grep, and file redirects keep data on-machine and are safe.