medusa
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed to improve code quality for Medusa-based applications and does not contain any malicious instructions, safety bypasses, or obfuscated code.
- [EXTERNAL_DOWNLOADS]: The skill includes a reference to official Medusa documentation at docs.medusajs.com. As the official domain for the framework, this is a well-known and trusted source.
- [COMMAND_EXECUTION]: The instructions include a 'Memory Protocol' that uses the 'cat' command to read a local learning file. This is a routine operation for agentic memory management and does not involve privilege escalation or the execution of untrusted external code.
- [DATA_EXFILTRATION]: No hardcoded credentials, sensitive system file access, or unauthorized network calls were found. The skill includes 'Iron Laws' that specifically warn against storing sensitive customer or payment data in custom tables, demonstrating an awareness of data security and compliance.
Audit Metadata