pnpm
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of extensive documentation for pnpm, a standard and widely used Node.js package manager. All content is educational and instructional.
- [SAFE]: The CLI commands documented, such as
pnpm install,pnpm add, andpnpm dlx, are standard functionalities of the tool for package management and remote execution within a developer workflow. - [SAFE]: CI/CD configuration examples for GitHub Actions, GitLab CI, and Docker follow established industry best practices and reference official or well-known images and actions.
- [SAFE]: References to external repositories and source locations point to the official pnpm project and reputable community maintainers.
- [SAFE]: No evidence of prompt injection, data exfiltration, hardcoded credentials, obfuscation, or malicious persistence mechanisms was identified in any of the 15 analyzed files.
Audit Metadata