javascript-dom-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill utilizes the 'WebFetch' tool to retrieve content from external URLs for analysis. This is the core functionality of the skill and is intended to target public web pages for technological reconnaissance.
- [COMMAND_EXECUTION]: The skill defines several PreToolUse and PostToolUse hooks that execute local shell scripts (e.g., 'pre_network_skill_hook.sh', 'post_evidence_capture_hook.sh'). These are standard orchestration scripts used for operational tasks like rate limiting and evidence auditing.
- [SAFE]: No malicious patterns, obfuscation, or unauthorized data access behaviors were detected. The skill explicitly states that fetched JavaScript should not be executed, mitigating common risks associated with processing untrusted web content.
Audit Metadata