prod-readiness
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill invokes standard command-line utilities such as git, npx, pnpm, and grep to perform repository analysis and run test suites.
- [EXTERNAL_DOWNLOADS]: The pipeline utilizes npx to run well-known development tools including vitest, tsc, and svelte-check, which are standard for the industry.
- [SAFE]: The security auditor specialist is explicitly instructed to search for critical vulnerabilities such as hardcoded secrets, injection flaws, and SSRF risks.
- [SAFE]: The local helper script summarize-review-reports.js safely parses severity tags from markdown files to generate a summary report.
Audit Metadata