Skills
skills/nrwl/nx-ai-agents-config/nx-plugins/Gen Agent Trust Hub

nx-plugins

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • [Prompt Injection] (SAFE): No instructions found that attempt to bypass safety filters or override agent behavior.
  • [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or unauthorized network operations detected.
  • [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill uses pnpm nx add which is the standard and expected method for installing Nx plugins. This behavior is consistent with the skill's primary purpose.
  • [Indirect Prompt Injection] (LOW): The skill ingests user-provided plugin names which are passed to the package manager.
  • Ingestion points: User input for the <plugin> placeholder in the pnpm nx add command.
  • Boundary markers: None present.
  • Capability inventory: Package installation and execution via pnpm.
  • Sanitization: None explicitly defined in the skill markdown.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 05:01 PM