Skills
skills/wavetermdev/waveterm/electron-api/Gen Agent Trust Hub

electron-api

Pass

Audited by Gen Agent Trust Hub on Mar 8, 2026

Risk Level: SAFENO_CODE
Full Analysis
  • [NO_CODE]: The skill consists entirely of a Markdown file providing development instructions and code templates. No scripts, binaries, or automated tasks are included.\n- [DATA_EXFILTRATION]: The guide demonstrates how to retrieve the system username via process.env.USER. This is presented as an architectural example for internal data flow between the main process and the frontend.\n- [PROMPT_INJECTION]: The documentation describes patterns for handling external data such as URLs.\n
  • Ingestion points: File SKILL.md (via variables like rect and url).\n
  • Boundary markers: None provided in the simplified code snippets.\n
  • Capability inventory: Includes capturePage (for UI content) and openExternal (for URL processing) in emain/emain-ipc.ts templates.\n
  • Sanitization: Not present in the educational templates.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 8, 2026, 07:25 PM