generate-artifacts

The skill demonstrates coherent purpose-capability alignment: it generates frontend artifacts from an OpenAPI spec using a published CLI, with a workflow that emphasizes discovery, configuration, and controlled generation. Install sources are standard (npm registry), and the data flows are strictly local to the repository. There are no credential reads, no external data exfiltration, and no high-risk permissions or autonomous real-world actions. Overall, the footprint appears benign and appropriately scoped for its stated purpose, with a low to moderate security risk primarily due to typical package-install and file-write operations in developer tooling.