browse-and-evaluate
Pass
Audited by Gen Agent Trust Hub on Mar 31, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Uses npx to fetch and execute the ai-agent-skills utility from the npm registry.\n- [EXTERNAL_DOWNLOADS]: Retrieves external skill definitions, metadata, and content from a remote catalog during search and installation workflows.\n- [COMMAND_EXECUTION]: Executes shell commands via the ai-agent-skills CLI to manage the lifecycle of agent extensions.\n- [SAFE]: Implements proactive security controls by mandating the use of dry-run flags and a preview command that explicitly filters for malicious prompt injection patterns.
Audit Metadata