Skills
skills/angular/skills/angular-new-app/Gen Agent Trust Hub

angular-new-app

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to use shell commands such as npm install, npx ng new, and npx ng generate. These are standard administrative tasks for Angular project management and are used within the expected scope of the skill's purpose.
  • [EXTERNAL_DOWNLOADS]: The skill triggers the download of the @angular/cli package and uses npx to fetch and execute remote tools. These resources originate from the official Angular repositories, which are recognized as trusted vendor sources for this author context.
  • [PROMPT_INJECTION]: The skill includes instructions to load contents of an ai-config file into memory to guide code generation. This creates a surface for indirect prompt injection if the configuration files were to contain malicious instructions; however, this is a standard feature of the official Angular CLI toolset designed for AI integration.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 08:56 AM