Skills
skills/kevmoo/dash_skills/matcher-to-checks/Gen Agent Trust Hub

matcher-to-checks

Pass

Audited by Gen Agent Trust Hub on Feb 16, 2026

Risk Level: LOWPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION] (LOW): The skill possesses an indirect prompt injection surface. 1. Ingestion points: Test files in the test/ directory. 2. Boundary markers: None identified. 3. Capability inventory: File modification (test files, pubspec.yaml) and command execution (dart pub add). 4. Sanitization: None. Risk is mitigated by the constrained scope of modifications.
  • [COMMAND_EXECUTION] (LOW): Uses grep and dart pub for discovery and dependency management. These are standard tools for Dart development.
  • [EXTERNAL_DOWNLOADS] (LOW): Executes dart pub add --dev checks, which downloads from the trusted pub.dev registry. [TRUST-SCOPE-RULE] applies.
Audit Metadata
Risk Level
LOW
Analyzed
Feb 16, 2026, 04:41 AM