scan-domain-entities
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed for static analysis of project files to generate documentation. It uses grep-like patterns to identify framework-specific entities and relationships, which is a standard and expected development task.
- [DATA_EXFILTRATION]: While the skill reads project configuration files like package.json or docs/project-config.json, it only uses this information to build a local report. There are no network requests, external downloads, or data transfer operations identified.
- [PROMPT_INJECTION]: The skill includes instructions to use TaskCreate for task management. This is a legitimate operational instruction for guiding the agent's workflow and does not attempt to bypass safety filters or override core security instructions.
- [REMOTE_CODE_EXECUTION]: No patterns for external package installation, shell command execution, or dynamic code evaluation were found. The skill relies on sub-agents to perform text-based searches across the codebase.
Audit Metadata