caching-optimizer
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses npx to download and execute the @j0kz/caching-optimizer package from the npm registry. This package is managed by the skill author and is considered a vendor-owned resource.
- [COMMAND_EXECUTION]: The skill provides various shell commands for cache management, including npm run cache:warm and npx @j0kz/caching-optimizer monitor for performance tracking.
- [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface as the analyze and monitor commands process external application data such as cache metrics and logs.
- Ingestion points: Application logs and cache metrics ingested via the analyze and monitor commands.
- Boundary markers: No explicit delimiters or instructions to ignore embedded instructions are present in the provided documentation.
- Capability inventory: The skill can execute shell commands and perform network requests via its associated toolset.
- Sanitization: Responsibility for data validation and sanitization is deferred to the implementation of the external @j0kz/caching-optimizer package.
Audit Metadata