kit-extensions
Pass
Audited by Gen Agent Trust Hub on Apr 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as a technical reference for building extensions for the Kit platform. It covers legitimate API features including event handling, tool registration, and UI customization.
- [COMMAND_EXECUTION]: The documentation describes the ability for extensions to spawn subprocesses using the standard Go
os/execpackage, which is a documented capability of the interpreted environment. - [PROMPT_INJECTION]: The guide includes examples for using the
OnBeforeAgentStarthook to inject system prompts or text, which is an intended mechanism for extensions to augment agent behavior. - [EXTERNAL_DOWNLOADS]: The skill documents the
kit installcommand, which allows users to download and manage extensions from remote Git repositories.
Audit Metadata