Skills
skills/oakoss/agent-skills/tanstack-cli/Gen Agent Trust Hub

tanstack-cli

Pass

Audited by Gen Agent Trust Hub on Feb 27, 2026

Risk Level: SAFENO_CODE
Full Analysis
  • [SAFE]: The skill contains no executable code or scripts within its package. It functions purely as a set of markdown-based instructions and configuration templates for developer workflows.
  • [CREDENTIALS_UNSAFE]: The skill references sensitive tokens such as GH_TOKEN and NODE_AUTH_TOKEN. These are correctly documented as environment variables meant to be injected by CI/CD environments (like GitHub Actions), rather than being hardcoded or exposed.
  • [EXTERNAL_DOWNLOADS]: Recommends the installation of standard development tools and official library packages including @tanstack/vite-config, @tanstack/publish-config, vite, and publint from the public npm registry.
  • [COMMAND_EXECUTION]: Instructions involve standard development commands such as pnpm build and npx tsx, which are used to execute local build and publishing scripts as part of the intended library maintenance purpose.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 27, 2026, 06:34 AM