vscode-extension-guide
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of documentation, configuration examples, and code snippets intended for learning VS Code extension development. No malicious behavior was detected.
- [EXTERNAL_DOWNLOADS]: The guide references standard development dependencies and tools from trusted sources, including
@vscode/vsce,@vscode/test-electron,typescript, andyo. These are official Microsoft or well-known community tools used for extension development. - [PROMPT_INJECTION]: The skill provides various prompt templates for AI-assisted code reviews and agent customization. These are provided as educational examples for users and do not attempt to override agent safety guidelines or perform jailbreaks.
- [CREDENTIALS_UNSAFE]: While the guide explains how to use Personal Access Tokens (PAT) for marketplace publishing, it correctly advises users on secure handling (e.g., copying tokens immediately and setting appropriate scopes) and does not contain hardcoded secrets.
Audit Metadata