evernote-local-dev-loop
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill provides standard boilerplate and documentation for establishing a local development workflow, with no malicious patterns detected in the instructions or code samples.
- [EXTERNAL_DOWNLOADS]: Recommends the installation of several well-known and verified packages from the official npm registry, such as
evernote,express,dotenv, andexpress-session, which are essential for the stated purpose of building an Evernote integration. - [COMMAND_EXECUTION]: Uses standard shell commands for project initialization (
npm init), directory management (mkdir), and running local development scripts, all of which are appropriate for a developer-centric skill. - [SAFE]: Encourages secure handling of sensitive data by instructing the user to store API keys and tokens in
.envfiles and providing guidance on excluding these files from version control via.gitignore.
Audit Metadata