nest
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [Documentation and Metadata] (SAFE): The skill consists entirely of markdown-based documentation and code snippets for the NestJS framework. The metadata correctly identifies the author and the official source (github.com/nestjs).
- [Dependency Analysis] (SAFE): All mentioned Python and Node.js packages are standard, legitimate libraries within the NestJS and Node.js ecosystems (e.g., @nestjs/core, @nestjs/swagger, TypeORM, Prisma, etc.).
- [Command Execution] (LOW/INFO): The skill contains CLI command examples for scaffolding (nest new, nest generate) and package management (npm install). These are standard developer tools and are presented as instructional content for the user, not as background scripts for the agent to execute without supervision.
- [Data Safety] (SAFE): No evidence of hardcoded credentials, sensitive file access, or malicious data exfiltration was found. Examples of configuration management follow industry best practices.
Audit Metadata