message-loader
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill's primary function is to load and route messages based on directory structure, using dynamic import() to execute local handler files. This behavior is consistent with its stated purpose as a loader and does not involve remote code execution or untrusted source loading.
- [EXTERNAL_DOWNLOADS]: The project depends on well-known libraries such as glob and rou3, and utilizes development tools like vitest and fix-esm-import-path. These are standard dependencies for Node.js development and are fetched from official registries.
Audit Metadata