dependency-auditor
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (SAFE): The skill possesses an ingestion surface as it reads and processes untrusted project dependency files (e.g., package.json, requirements.txt). However, this is necessary for its defensive function.\n
- Ingestion points: Dependency manifest files including package.json, requirements.txt, Gemfile, pom.xml, and yarn.lock.\n
- Boundary markers: No specific boundary instructions or delimiters are present in the documentation to isolate these files from the agent's logic.\n
- Capability inventory: The skill utilizes the Bash and Read tools, which provide the ability to execute system commands and access files.\n
- Sanitization: The skill relies on the built-in parsing and reporting mechanisms of established package manager audit tools.\n- [External Downloads] (SAFE): The skill interacts with public, trusted package registries such as npmjs.org and pypi.org to fetch security advisory data. This is a standard requirement for dependency auditing and follows the Trust-Scope-Rule for trusted sources.
Audit Metadata