typescript-docs
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE]: The skill package consists exclusively of Markdown documentation, configuration files, and code templates. No executable scripts or binary files are included.
- [SAFE]: Dependencies and tools referenced, such as TypeDoc, Compodoc, and official GitHub Actions, are well-known, reputable, and industry-standard.
- [INDIRECT_PROMPT_INJECTION]: The skill workflow involves processing untrusted source code to generate documentation, presenting an indirect injection surface. * Ingestion points: Project source code (.ts) and markdown files. * Boundary markers: The instructions lack explicit delimiters or instructions to ignore embedded prompts in source files. * Capability inventory: The skill is allowed to use Bash, Write, and Edit tools. * Sanitization: No sanitization or escaping of input data is specified.
Audit Metadata