lemon
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute standard development tasks such as linting via 'pnpm run lint --fix' and package management using the '@antfu/ni' suite (e.g., 'ni', 'nr', 'nu'). These commands are standard for the intended development workflow.
- [EXTERNAL_DOWNLOADS]: The skill documentation references several external resources and packages. It provides configurations for GitHub Actions that utilize reusable workflows from the 'sxzz/workflows' repository for CI/CD automation.
- [SAFE]: The skill demonstrates security awareness by recommending the use of '--ignore-scripts' during automated dependency installation within git hooks, which effectively mitigates the risk of malicious post-install scripts.
Audit Metadata