anyway-config-coder
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [GENERAL] (SAFE): The skill functions as a coding assistant for the 'anyway_config' Ruby gem. It provides templates for configuration classes and directory structures.
- [DATA_EXPOSURE] (SAFE): While the skill mentions API keys and secrets, it does so in the context of environment variable mapping. It uses placeholders (e.g., 'test-key') and refers to environment variables (e.g., ENV['GEMINI_API_KEY']), which is the correct and safe way to handle configuration in software development.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references the 'anyway_config' gem, which is a legitimate and widely used library in the Ruby ecosystem. No suspicious or unversioned remote scripts are downloaded.
- [COMMAND_EXECUTION] (SAFE): No arbitrary command execution or shell spawning patterns were identified in the instruction set or the provided code examples.
- [INDIRECT_PROMPT_INJECTION] (SAFE): The skill is a template provider and does not ingest untrusted external data for decision-making or execution. It provides a static set of patterns for a developer to implement manually.
Audit Metadata