browser-extension-developer
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides instructional guidance and metadata for browser extension development. Analysis found no malicious patterns, obfuscation, or unauthorized access attempts.
- [COMMAND_EXECUTION]: The documentation references standard development lifecycle commands such as
npm run dev,npm run dev:firefox, andnpm run build-all. These are documented as text for the agent's reference and do not represent autonomous or hidden command execution. - [INDIRECT_PROMPT_INJECTION]: The skill defines a surface for interacting with project files in the
browser/directory. - Ingestion points: Local files within the
browser/directory (entrypoints, locales, config). - Boundary markers: None explicitly defined in the skill instructions.
- Capability inventory: No subprocess calls, network operations, or file-write capabilities are defined within the skill's own code/scripts (as it is documentation-only).
- Sanitization: None required for the static documentation provided.
Audit Metadata