typescript-magician
Pass
Audited by Gen Agent Trust Hub on Mar 14, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill instructions in SKILL.md specify running
tsc --noEmit. This is a benign and standard operation used to validate code against the TypeScript compiler without generating output files, commonly used for CI/CD and development checks. - [EXTERNAL_DOWNLOADS]: The rule file rules/deep-inference.md references
ts-toolbelt. This is a well-known and trusted open-source library used by the TypeScript community for advanced type manipulation; its mention in code examples is legitimate and consistent with the skill's purpose. - [SAFE]: A comprehensive review across all ten threat categories reveals no evidence of prompt injection, credential theft, data exfiltration, or persistence mechanisms. The skill operates within the expected scope of a TypeScript development assistant.
Audit Metadata