validate-before-merge
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No malicious patterns, obfuscation, or exfiltration attempts were detected.
- [COMMAND_EXECUTION] (LOW): The skill utilizes local shell commands including
pnpm,git, andgrep. These are used for their intended purposes (running scripts, checking repository status, and searching source files) within a development context. - [EXTERNAL_DOWNLOADS] (LOW): The skill contains the
pnpm icommand which downloads external dependencies. This is standard behavior for the primary purpose of building and validating a Node.js project.
Audit Metadata