prpm-json-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [NO_CODE] (SAFE): The analyzed files consist entirely of static JSON configuration. There are no scripts, binary executables, or natural language instructions that could lead to prompt injection or command execution.
- [EXTERNAL_DOWNLOADS] (SAFE): Although the manifests reference external GitHub repositories and package identifiers (e.g., '@prpm/collections', '@external/test-runner'), these are descriptive fields only. No automated download or installation logic is present within the analyzed content.
Audit Metadata