housekeeping
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is composed exclusively of documentation and guidelines. No executable scripts, binaries, or automated tasks were found across the 13 files analyzed.
- [COMMAND_EXECUTION]: The documentation contains numerous examples of shell commands (e.g.,
npm audit,pip install,git mv,docker-compose up). These are provided as educational examples and standard workflows for developers and AI agents to follow manually or as part of a controlled task context. No obfuscated or suspicious command strings are present. - [EXTERNAL_DOWNLOADS]: The guides reference various reputable third-party tools for project auditing (such as
knip,depcheck,vulture, andcargo-audit). These are well-established community tools for static analysis and security scanning, recommended within their respective ecosystems. - [CREDENTIALS_UNSAFE]: The infrastructure and tech-debt guides explicitly recommend best practices for secret management, such as excluding
.envfiles from version control. The examples provided use generic placeholders (e.g.,your-key-here,password) and do not contain hardcoded secrets.
Audit Metadata