dev-dependency-management
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is primarily instructional content designed to guide an AI agent or developer in safe dependency management practices.
- [SAFE]: The 'Ops Preflight' section includes standard shell commands (
node -v,npm ls,ls) intended for diagnostic purposes to ensure the local development environment is healthy before proceeding with tasks. - [SAFE]: The skill explicitly includes a section on 'AI-Generated Dependency Risks,' warning users and agents about hallucinated or vulnerable packages, which enhances the security posture of the user.
- [SAFE]: All referenced tools (e.g., npm, pnpm, poetry, snyk, dependabot) and commands are industry-standard utilities for software development and security auditing.
Audit Metadata