pgpm-dependencies
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions and examples are focused on the legitimate use of the pgpm package manager for PostgreSQL.
- [COMMAND_EXECUTION]: All commands identified, such as pgpm add, pgpm deploy, and pgpm extension, are standard CLI operations belonging to the pgpm toolchain authored by constructive-io. These commands are used as intended for dependency management and deployment without arbitrary or unsafe execution patterns.
- [DATA_EXPOSURE]: No hardcoded credentials, sensitive system paths, or unauthorized network operations were detected. The skill correctly references module-specific files like .control and pgpm.plan which are standard for the tool's operation.
Audit Metadata