salvo-realtime
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Documentation and Templates (SAFE): The content consists entirely of informational text and boilerplate code for WebSockets and Server-Sent Events (SSE). No executable scripts or hidden commands are present.
- Rust Code Snippets (SAFE): The provided Rust and JavaScript snippets use standard libraries (tokio, salvo) and follow idiomatic patterns for real-time web services.
- Indirect Prompt Injection Surface (INFO): While the WebSocket examples handle external data, they are provided as templates for developers. The skill itself does not process untrusted data within the agent's own execution context.
- No-Code Skill (INFO): This skill contains only a markdown file with documentation. It does not include scripts or configuration files that could be executed by the host environment.
Audit Metadata