kernel-compiler
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill performs environment validation by executing version-check commands for various development tools (including
node,npm,go,rustc, anddocker). These executions use hardcoded arguments (e.g.,--version) and are restricted to a pre-validated list of supported toolchain targets. - [DATA_EXPOSURE]: The skill reads
package.jsonand crawls the file system within a user-specified directory to perform project analysis. This behavior is limited to the directory provided in the arguments and is consistent with the skill's stated purpose of preparing projects for compilation. - [REMOTE_CODE_EXECUTION]: Although the skill generates build commands involving package managers like
npm,go, andcargo, it does not execute these commands during runtime. The generated build plans are returned as a JSON result for informational purposes only.
Audit Metadata