source-driven-development
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill defines a set of best practices for code generation, focusing on identifying correct framework versions and citing official documentation sources.
- [SAFE]: The instructions use standard project manifest files (such as package.json, go.mod, and requirements.txt) to detect the technology stack, which is a benign and expected development practice.
- [SAFE]: The skill mandates fetching information from official and well-known technology documentation sites (e.g., react.dev, docs.djangoproject.com, MDN). These sources are recognized as trusted, and the instructions specifically warn against using non-authoritative sources like blog posts or AI-generated summaries.
- [SAFE]: No patterns of prompt injection, data exfiltration, obfuscation, or remote code execution were detected. The skill does not request access to sensitive credentials or system files.
Audit Metadata