onboarding
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes standard shell commands (e.g.,
npm install,pip install,ldcli) to perform repository integration tasks. These operations are scoped to the project and require explicit user consent at critical steps. - [EXTERNAL_DOWNLOADS]: The skill fetches companion tools from official LaunchDarkly sources, such as the
launchdarkly/ai-toolingrepository and the@launchdarkly/mcp-serverpackage. These are verified vendor resources used for the skill's primary purpose. - [SAFE]: Secret management practices are emphasized throughout the skill, including instructions to use environment variables and ensure
.envfiles are ignored by version control. No hardcoded credentials or unsafe data exfiltration patterns were detected.
Audit Metadata