code-review
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs local static analysis using a TypeScript script (
scripts/analyze-complexity.ts) to calculate cyclomatic complexity. The script uses the official TypeScript compiler API and does not perform any network operations or unauthorized file access. - [SAFE]: External data ingestion is limited to fetching pull request diffs via the GitHub CLI (
gh), which is a well-known and trusted tool for development workflows. - [SAFE]: All reference documents and templates are purely informational, providing best practices for JavaScript, Python, TypeScript, React, and Next.js without any hidden executable logic or malicious redirection.
- [SAFE]: The skill follows the principle of least privilege, focusing on read-only analysis of source code and the generation of markdown reports based on user requests.
Audit Metadata