nestjs-pro
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (MEDIUM): The skill references and encourages the execution of internal scripts (
scripts/check-circular.tsandscripts/generate-feature.py) whose contents were not provided for analysis. This presents a risk of unverified code execution if the missing scripts contain malicious logic. - [EXTERNAL_DOWNLOADS] (LOW): The instructions include the command
bun x nest build. Usingbun x(similar tonpx) fetches and executes packages from public registries at runtime, which is a standard development practice but introduces a dependency-trust risk. - [PROMPT_INJECTION] (LOW): The skill possesses an attack surface for indirect prompt injection through its scaffolding capability.
- Ingestion points:
scripts/generate-feature.py(File: SKILL.md) processes user-provided names and parameters to generate code. - Boundary markers: Absent. No instructions are provided to the agent to sanitize input or ignore embedded instructions in the feature names.
- Capability inventory: Implied file-write access and directory manipulation via the scaffolding script.
- Sanitization: Not verifiable as the script source code is missing.
Audit Metadata