Skills
skills/sickn33/antigravity-awesome-skills/nestjs-expert/Gen Agent Trust Hub

nestjs-expert

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill performs project diagnostics using shell commands such as grep, find, sed, and test to identify the Nest.js version, database integration, and authentication strategies. It also executes nest info and package manager scripts like npm run build and npm run test to validate configurations.
  • [PROMPT_INJECTION]: The skill has a vulnerability surface for indirect prompt injection.
  • Ingestion points: The agent reads local project files including package.json, nest-cli.json, tsconfig.json, and various TypeScript source files (*.module.ts).
  • Boundary markers: External content is read directly into the agent context without delimiters or explicit instructions to disregard embedded commands.
  • Capability inventory: The skill possesses the ability to execute shell commands, run build processes, and interact with the package manager, increasing the potential impact of an injection.
  • Sanitization: No sanitization or verification of ingested file content is performed before the agent processes the information.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 08:34 AM