scaffold-exercises

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides instructions and shell commands for creating directory structures (mkdir -p), writing stub files (echo), and moving files (git mv). These are appropriate for its stated purpose of scaffolding educational content.
  • [SAFE]: No network operations, sensitive file access, or obfuscated content were detected.
  • [COMMAND_EXECUTION]: The skill uses bash to perform file operations. The commands are simple and do not incorporate unvalidated external input in a way that would lead to command injection in this context. It also calls pnpm ai-hero-cli, which is identified as an internal project linter.
  • [PROMPT_INJECTION]: No attempts to override agent instructions or bypass safety filters were found.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 07:06 AM
Security Audit — agent-trust-hub — scaffold-exercises