cli-developer
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate educational and implementation resource designed to assist in the creation of CLI tools using standard frameworks (e.g., Commander.js, Click, Cobra). No malicious patterns or security risks were identified in the instructions or code examples.
- [SAFE]: Security best practices are actively promoted within the documentation, such as recommending restricted file permissions (mode 600) for sensitive local data like
credentials.jsonand advising the use ofNO_COLORand TTY detection to respect user environments. - [SAFE]: The code templates provided for Python, Node.js, and Go use well-known, established libraries and demonstrate standard error handling, configuration management, and testing patterns.
- [SAFE]: There are no signs of prompt injection, data exfiltration, or obfuscation. The use of network operations in examples (e.g.,
checkForUpdates) is standard for the described purpose of the skill.
Audit Metadata