turborepo
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is composed entirely of markdown documentation and configuration templates. It does not include any executable scripts or binaries, ensuring no direct execution risks within the agent's environment.
- [EXTERNAL_DOWNLOADS]: The skill references trusted and official resources, including the Turborepo documentation site (turborepo.dev) and Vercel services. These references are used for providing context and schema validation, posing no security threat.
- [CREDENTIALS_UNSAFE]: Documentation regarding environment variables and remote caching (e.g., TURBO_TOKEN) uses placeholder values and explains their purpose for user configuration. No hardcoded secrets or sensitive credentials are included in the skill files.
- [PROMPT_INJECTION]: The instructions provided in the skill are task-oriented and emphasize proper usage of Turborepo commands. There are no attempts to override the agent's safety protocols or engage in malicious role-play.
Audit Metadata