noir-developer
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill utilizes several local commands including 'nargo compile', 'nargo execute', 'nargo new', 'nargo init', and 'nargo test'. These are standard development tasks for the Noir language and are used in their intended context.
- [EXTERNAL_DOWNLOADS] (LOW): The skill references 'bbup' for installing the Barretenberg backend. While this involves downloading and installing external binaries, it is directed to the official Aztec Network documentation (barretenberg.aztec.network) and is a standard procedure for this specific toolchain.
- [REMOTE_CODE_EXECUTION] (SAFE): There are no patterns found where untrusted remote scripts are piped directly into a shell or interpreter.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill processes user inputs to generate a ZK witness via 'nargo execute'. This represents an attack surface for data-driven injection, but the toolchain is specialized for arithmetic circuits rather than general-purpose command execution, and the usage is typical for a developer tool.
Audit Metadata