web-artifacts-builder
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill uses shell scripts (
init-artifact.shandbundle-artifact.sh) to automate project setup and bundling. The commands executed, such aspnpm,npm,vite, andparcel, are standard for web development and directly serve the skill's primary purpose. - EXTERNAL_DOWNLOADS (SAFE): Development dependencies are installed from the official NPM registry. All identified packages, including React, Radix UI, Vite, and Tailwind CSS, are widely used industry standards. No suspicious or unverified download sources were detected.
- SAFE (SAFE): No malicious patterns such as prompt injection, data exfiltration, or persistence mechanisms were found. The skill operates as a transparent build utility.
Audit Metadata