project-scaffold
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides architectural templates and documentation for NestJS and Next.js development. No executable scripts are included that would perform unauthorized actions.
- [SAFE]: All external package references in the documentation, such as
axios,zod,typeorm, andprisma, are well-known, industry-standard libraries. - [SAFE]: The use of the scoped package
@sellernote/sellernote-nestjs-api-propertyis a legitimate vendor resource consistent with the skill author's identity. - [SAFE]: The security guidelines provided in the references (e.g.,
SECURITY_CONVENTION.md) advocate for best practices such as password hashing with bcrypt, CSRF protection, and avoiding hardcoded secrets.
Audit Metadata