dependency-manager
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Prompt Injection] (SAFE): No attempts to override agent instructions or bypass safety guardrails were found.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or network operations were detected.
- [Obfuscation] (SAFE): Text is clear and lacks any hidden encoding such as Base64, hex, or zero-width characters.
- [Remote Code Execution] (SAFE): No package managers are invoked, and no remote scripts are downloaded or executed.
- [Indirect Prompt Injection] (SAFE): While the skill is designed to handle untrusted dependency data, it lacks any operational capabilities (subprocess calls, file-write, or network access) that could be exploited via injection.
Audit Metadata