Skills
skills/ntcoding/claude-skillz/typescript-backend-project-setup/Gen Agent Trust Hub

typescript-backend-project-setup

Pass

Audited by Gen Agent Trust Hub on Feb 21, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSDATA_EXFILTRATIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS] (LOW): The project configuration in .claude/settings.json enables plugins from the ntcoding/claude-skillz repository (e.g., task-check, automatic-code-review). Since this GitHub repository is not on the pre-approved list of trusted organizations, it is flagged as an unverifiable dependency.
  • [DATA_EXFILTRATION] (SAFE): Workspace permissions in .claude/settings.json explicitly block the agent from reading .env and .env.* files across all application and package directories, providing a strong safeguard against accidental leakage of secrets.
  • [COMMAND_EXECUTION] (SAFE): A pre-execution hook (block-dangerous-commands.sh) is configured to catch and block potentially destructive command-line arguments, such as --force, --hard, and --no-verify, enforcing safer developer workflows.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 21, 2026, 01:21 PM