exome
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- SAFE (SAFE): No malicious patterns detected. The skill contains standard documentation, installation instructions, and code examples for a well-known JavaScript library.
- EXTERNAL_DOWNLOADS (SAFE): The skill references the
exomepackage via npm. This is the intended purpose of the skill and is considered safe given the library's context and intended primary purpose. - Indirect Prompt Injection (SAFE): The skill includes documentation for state persistence. Ingestion points:
loadStatefunction inSKILL.mdaccepts state snapshots. Boundary markers: Not explicitly defined in code snippets. Capability inventory: Mutates internal application state in the store. Sanitization: Handled by the library's registration system viaregisterLoadable.
Audit Metadata