emulate-seed
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references and suggests the installation of the 'emulate' package via npm. This package is maintained by Vercel Labs, which is recognized as a trusted organization.
- [COMMAND_EXECUTION]: Documentation provides standard development CLI examples such as 'npx emulate' and demonstrates how to integrate these commands into CI/CD workflows like GitHub Actions.
- [CREDENTIALS_UNSAFE]: The rules explicitly instruct the agent and user to avoid hardcoding real API keys or Personal Access Tokens. It uses descriptive seeded token names (e.g., 'dev_token', 'admin_token') as identifiers for the local emulator state, following established credential hygiene practices.
- [SAFE]: Usage of the author's name ('yonatangross') and associated contact details in examples is consistent with expected vendor identification and does not present a security risk.
Audit Metadata