arch-upkeep
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a documentation-based orchestrator and does not contain any executable scripts, obfuscated code, or malicious prompt instructions.
- [COMMAND_EXECUTION]: The instructions guide the agent to perform standard development tasks using well-known tools such as
pnpm,vitest,eslint, andtsdown. These operations are consistent with the skill's stated purpose of repository maintenance. - [EXTERNAL_DOWNLOADS]: The skill recommends installing additional architecture-specific skills (e.g.,
arch-tsdown-monorepo,arch-webext-vue) from an authorized agent skills catalog. This is a functional requirement for its orchestration role and relies on platform-managed installation mechanisms rather than arbitrary remote script execution.
Audit Metadata