better-t-stack
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- EXTERNAL_DOWNLOADS (MEDIUM): The skill instructs agents to run 'npx create-better-t-stack@latest', which downloads and executes code from the NPM registry. The package owner ('AmanVarshney01') is not among the verified/trusted organizations.
- REMOTE_CODE_EXECUTION (MEDIUM): The use of npx on a non-trusted package allows for arbitrary code execution during the project scaffolding process.
- COMMAND_EXECUTION (LOW): The skill suggests running various shell commands to create and configure projects, which is the primary purpose of the skill.
- PROMPT_INJECTION (LOW): The skill is vulnerable to indirect prompt injection. 1. Ingestion points: User-provided project name and CLI flags in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Subprocess execution via shell. 4. Sanitization: Absent.
Audit Metadata