qr-code
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local Node.js script (
qr-generate.js) that parses command-line arguments to handle the QR code generation logic. - [EXTERNAL_DOWNLOADS]: The script depends on the well-known
qrcodenpm package for generating image files. It includes a fallback mechanism to display data as text if the library is not present in the environment. - [SAFE]: No malicious patterns such as prompt injection, hardcoded credentials, or unauthorized network operations were detected. The file-writing behavior is limited to the output path provided during execution.
Audit Metadata