build-error-resolver
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill instructs the agent to execute standard development commands (e.g.,
npx tsc,npm run build,npx eslint). These are consistent with the skill's primary purpose of resolving build errors. - [EXTERNAL_DOWNLOADS] (SAFE): The skill suggests running
npm installto resolve missing dependencies. While this involves downloading external packages, it is a routine operation in the context of fixing development environment issues. - [INDIRECT_PROMPT_INJECTION] (LOW): As a tool that processes build logs and error messages, there is a theoretical surface for indirect prompt injection if an attacker could control the content of an error message. However, the skill includes strict core principles (minimalist modification, no architectural changes) that serve as functional guardrails.
- [DATA_EXPOSURE] (SAFE): No patterns of accessing sensitive files (e.g., .env, .ssh) or exfiltrating data to external domains were found.
Audit Metadata