devvit-docs
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill executes a local helper script (node ./scripts/ensure-docs.cjs) to manage the documentation lifecycle. This is a functional requirement but represents an execution surface.
- [EXTERNAL_DOWNLOADS] (LOW): The skill clones content from github.com/reddit/devvit-docs at runtime. Since the repository is not within the defined trusted organizations list, it is classified as an untrusted external download.
- [PROMPT_INJECTION] (LOW): The skill is susceptible to Indirect Prompt Injection (Category 8) by processing untrusted data from an external source. 1. Ingestion points: Documentation files from the reddit/devvit-docs repository. 2. Boundary markers: Absent; there are no instructions to ignore embedded commands within the fetched documentation. 3. Capability inventory: The skill can execute local Node.js scripts and read from the filesystem. 4. Sanitization: Absent; the skill is explicitly instructed to quote and provide examples from the external source.
Audit Metadata