Skills
skills/haibaraaiaptx/frontend-openapi-skills/generate-models/Gen Agent Trust Hub

generate-models

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the user to install the '@aptx/frontend-tk-cli' package from the npm registry. This package is a vendor-owned resource associated with the author 'haibaraaiaptx'.
  • [COMMAND_EXECUTION]: The skill executes several local commands for environment discovery and tool operation:
  • Uses 'ls' and 'cat' to inspect 'package.json' files and directory structures to determine correct package names and paths.
  • Executes the 'aptx-ft' CLI tool via 'pnpm exec' or 'npx' to generate source code files based on an input OpenAPI schema.
  • [PROMPT_INJECTION]: Indirect prompt injection surface identified (Category 8):
  • Ingestion points: The skill processes external 'openapi.json' files as input for code generation.
  • Boundary markers: None provided in the prompt instructions.
  • Capability inventory: The 'aptx-ft' tool writes TypeScript files to the local filesystem based on the processed schema.
  • Sanitization: Not explicitly defined in the agent instructions; the skill relies on the underlying CLI tool for processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 10:59 AM