update-tech-stack
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No security issues detected. The skill's behavior is consistent with its stated purpose of managing tech stack documentation using local project metadata.
- [COMMAND_EXECUTION]: The skill uses Bash tools such as
git,jq, andfindto analyze dependencies and configuration changes. These commands are standard for development workflows and do not involve remote network calls or unsafe command building with user input. - [COMMAND_EXECUTION]: Dynamic context injection is used via backtick commands (e.g.,
!pwd,!git diff) to provide the agent with initial project state. These commands are benign and do not execute untrusted external code.
Audit Metadata