supply-chain-risk-auditor
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a workflow for supply chain risk assessment, evaluating dependencies based on maintenance, popularity, and security features.\n- [COMMAND_EXECUTION]: Invokes the 'gh' CLI tool to retrieve repository metadata such as stars and issue counts. This behavior is consistent with the skill's stated goal.\n- [DATA_EXFILTRATION]: Audit results are stored in a local directory ('.supply-chain-risk-auditor'). No patterns of unauthorized external data transfer were found.
Audit Metadata