sonarjs
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious patterns, such as prompt injection, data exfiltration, or obfuscation, were detected in the skill instructions or metadata.
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the
eslint-plugin-sonarjspackage from the official NPM registry. This is a well-known, trusted dependency used for static analysis and code quality checks. - [COMMAND_EXECUTION]: The skill utilizes standard developer tools, including
rg(ripgrep) for file discovery andnpm/npxfor dependency management and linting execution. These commands are used appropriately within the context of project configuration and do not pose a security risk.
Audit Metadata