solo-scaffold
Warn
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to perform system-level tasks and git repository management. It dynamically generates a Makefile and a project-specific AI agent skill.
- [EXTERNAL_DOWNLOADS]: It downloads third-party code from well-known registries via pnpm and uv.
- [REMOTE_CODE_EXECUTION]: Automated package installation triggers the execution of remote code in the form of installation scripts.
- [DATA_EXFILTRATION]: The skill pushes locally generated project data to GitHub using the GitHub CLI.
- [PROMPT_INJECTION]: The skill reads project requirements and sibling project code to guide generation, which introduces a surface for indirect prompt injection without sanitization.
Audit Metadata