electron
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill includes standard shell commands for project initialization and building using npm, yarn, and pnpm. These are routine for development and pose no threat.
- [EXTERNAL_DOWNLOADS] (SAFE): All dependencies such as electron, electron-builder, and electron-forge are standard industry tools and are fetched from the public npm registry.
- [PROMPT_INJECTION] (SAFE): No malicious instructions, instruction-override markers, or attempts to extract system prompts were detected in the skill content or metadata.
- [DATA_EXFILTRATION] (SAFE): The examples prioritize security by promoting contextIsolation and safe IPC communication; no hardcoded credentials or sensitive file access patterns were identified.
- [DYNAMIC_EXECUTION] (SAFE): While the skill uses Node.js 'require' and 'import', it does so in a static, standard manner for module loading without incorporating untrusted user input into execution sinks.
Audit Metadata