vibe-coding
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill consists entirely of informational markdown files covering topics such as API design, code quality, security best practices, and project workflows. These files serve as guidance for the AI agent and do not contain executable logic.
- [NO_CODE] (SAFE): There are no Python scripts, Node.js files, Shell scripts, or other executable binaries included in the skill package.
- [SECURITY_GUIDANCE] (SAFE): The file
references/domains/security.mdcontains examples of security vulnerabilities (e.g., SQL injection, XSS) and their mitigations. These are clearly labeled as educational 'BAD' vs 'GOOD' patterns and do not represent active threats. - [EXTERNAL_DOWNLOADS] (SAFE): No remote resources are fetched, and no package managers (npm, pip) are invoked.
- [DATA_EXFILTRATION] (SAFE): No patterns related to reading sensitive local files or transmitting data to external domains were found.
Audit Metadata