audit-fix
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes pnpm install, pnpm audit, and pnpm outdated. These are standard package management commands used for the intended purpose of dependency remediation.
- [COMMAND_EXECUTION]: The skill invokes a local script bash scripts/check-overrides.sh to perform repository-specific cleanup of stale dependency overrides.
- [PROMPT_INJECTION]: Indirect prompt injection surface identified.
- Ingestion points: Reads output from pnpm audit --json in SKILL.md.
- Boundary markers: None identified.
- Capability inventory: The skill can modify local configuration files and execute shell commands via pnpm and bash.
- Sanitization: Data is processed into structured changes for user review.
Audit Metadata