nestjs-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Architecture (SAFE): The skill is well-structured, consisting of markdown-based rule files and a local TypeScript build script. Its primary purpose is to provide guidance for code generation and refactoring in NestJS environments.
- External Downloads (SAFE): The skill requires standard Node.js development dependencies (TypeScript, ts-node) for its build process. These are defined in
scripts/package.jsonand are reputable packages from the npm registry. - Command Execution (SAFE): The provided
scripts/build.shandscripts/build-agents.tsare used to aggregate documentation files into a singleAGENTS.mdfile. The logic is restricted to local filesystem operations (fs.readFileSync,fs.writeFileSync) and does not perform any network requests or execute external/untrusted payloads. - Credential Security (SAFE): While the security-related rules contain code examples with keys (e.g.,
secret: 'my-secret-key'), these are explicitly marked as 'Incorrect' examples to illustrate security risks, and no real credentials or secrets are leaked. - Prompt Injection (SAFE): The rule files contain instructional language intended to guide agent behavior towards best practices. No attempts to bypass safety filters, extract system prompts, or override core agent constraints were identified.
Audit Metadata