backend-trpc-openapi
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- EXTERNAL_DOWNLOADS (MEDIUM): The skill installs 'trpc-to-openapi' and 'swagger-ui-express'. The 'trpc-to-openapi' package is a fork maintained by a non-whitelisted user (mcampa), making it an unverifiable dependency according to safety protocols. This finding is downgraded to LOW as it is the primary purpose of the skill.
- COMMAND_EXECUTION (LOW): The skill requests 'Bash (*)' permissions to execute npm installation commands and server setup. This is a broad capability that should be monitored for unexpected script execution.
- INDIRECT_PROMPT_INJECTION (LOW): The skill has a significant attack surface because it reads project files (Ingestion points: src/server/) and possesses file-write and bash capabilities (Capability inventory). No boundary markers or specific sanitization routines for processing existing codebases are defined, creating a surface for potential instruction injection via code comments in analyzed files.
Audit Metadata