rust-performance
Warn
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (MEDIUM): The skill recommends the command 'cargo install flamegraph', which downloads and compiles an unversioned package from the crates.io registry. This introduces a supply chain risk as the version is not pinned or verified.
- [COMMAND_EXECUTION] (LOW): The guide includes several shell commands for profiling and benchmarking, such as 'cargo flamegraph', 'valgrind', and 'cargo bench'. While standard for developers, these represent the execution of external tools with potential side effects.
Audit Metadata