pnpm
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION] (SAFE): No instructions found that attempt to override system prompts, bypass safety filters, or use role-play for jailbreaking.
- [DATA_EXFILTRATION] (SAFE): No sensitive credentials, private file paths, or unauthorized network operations were identified. Examples use standard development files like package.json and .npmrc.
- [REMOTE_CODE_EXECUTION] (SAFE): Command examples are restricted to standard package management operations (pnpm install, pnpm add, pnpm publish). No piped remote scripts or suspicious downloads from unknown sources are present.
- [COMMAND_EXECUTION] (SAFE): Subprocess calls for workspace filtering and task running are aligned with the skill's stated purpose of managing monorepos.
- [CREDENTIALS_UNSAFE] (SAFE): No API keys, tokens, or hardcoded secrets were found in the examples or configuration snippets.
Audit Metadata