mastra-embeded-docs-look-up
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes common shell commands such as ls, cat, and grep. These operations are restricted to the node_modules/@mastra/ directory and are used solely for reading documentation, which is the skill's primary function.
- [DATA_EXPOSURE] (SAFE): File access is focused on non-sensitive documentation and type definition files within project dependencies. No evidence of attempts to access user credentials, environment variables, or private system files was found.
- [INDIRECT_PROMPT_INJECTION] (SAFE): While the skill ingests information from external packages, this is necessary for its stated purpose of documentation lookup. The risk of malicious instructions within these library files is minimal and secondary to the tool's intended utility.
Audit Metadata