Skills
skills/rebyteai-template/rebyte-skills/deno-monorepo-template/Gen Agent Trust Hub

deno-monorepo-template

Fail

Audited by Gen Agent Trust Hub on Feb 21, 2026

Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • Remote Code Execution (HIGH): The instructions direct the agent to clone a repository from https://github.com/runreal/deno-monorepo-template.git and subsequently run deno install and deno task dev. Since the source repository is not part of a trusted organization, the code being executed is unverifiable and could contain malicious scripts.
  • External Downloads (HIGH): The skill downloads content from an untrusted external repository. According to the [TRUST-SCOPE-RULE], because the repository belongs to an untrusted account (runreal), the risk associated with downloading and executing its content remains at a high level.
  • Command Execution (MEDIUM): The skill uses deno task and shell commands like mv and rm to manipulate the local filesystem and execute project-specific tasks, which could be exploited if the downloaded repository contains a malicious deno.json or task configuration.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
Feb 21, 2026, 02:26 PM