mistral-local-dev-loop
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides a standard project boilerplate for Node.js development without any malicious patterns detected.
- [SAFE]: Employs security best practices by instructing the user to add local environment files (
.env.local,.env) to.gitignore, which prevents the accidental leakage of sensitive credentials like the Mistral API key. - [EXTERNAL_DOWNLOADS]: References well-known, official, and versioned packages from the NPM registry, including the Mistral AI SDK (
@mistralai/mistralai), Vitest, and TSX. These are standard tools for the described use case. - [COMMAND_EXECUTION]: Uses basic shell commands (
cat,cp,echo) to initialize project files and configuration. These operations are transparent and serve the primary purpose of setting up the development environment.
Audit Metadata