wren-project
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill performs a version check by fetching a metadata JSON file from the official Canner repository on GitHub. This is used to notify the user if a newer version of the skill is available.
- [SAFE]: The skill follows security best practices for credential management by stating that connection info and secrets are managed via an external Web UI (MCP server) and should not be stored in the project's YAML files.
- [SAFE]: Instructions for updating the skill involve standard package manager commands (npx) pointing to the official vendor repository.
Audit Metadata