verify
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Command Execution (SAFE): The skill invokes standard npm scripts (build, lint, test) to verify code quality. These operations are confined to the local project environment and match the stated purpose of the skill.
- Data Exposure & Exfiltration (SAFE): No access to sensitive files like SSH keys or environment variables, and no unauthorized network requests were detected.
- Indirect Prompt Injection (SAFE): Ingestion points: Processes local source code and test results through execution output. Boundary markers: Not explicitly defined in the instructions. Capability inventory: Limited to executing pre-defined
npmscripts in the project directory. Sanitization: The skill relies on the integrity of the local development environment.
Audit Metadata