Skills
skills/backnotprop/plannotator/plannotator-visual-explainer/Gen Agent Trust Hub

plannotator-visual-explainer

Warn

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: Executes local CLI commands to deliver the generated content.
  • Evidence: 'plannotator annotate --render-html' in 'SKILL.md'.
  • [REMOTE_CODE_EXECUTION]: Instructs the agent to install an external skill from a third-party source if it is not already present.
  • Evidence: 'npx skills add nicobailon/visual-explainer -g --yes' in 'SKILL.md'.
  • [EXTERNAL_DOWNLOADS]: Fetches a JavaScript library from a public CDN for rendering diffs in the generated HTML.
  • Evidence: 'https://cdn.jsdelivr.net/npm/@pierre/diffs@1.1.21/+esm' in 'references/pr-components.md'. This utilizes the JSDelivr content delivery network.
Audit Metadata
Risk Level
MEDIUM
Analyzed
May 12, 2026, 12:14 AM
Security Audit — agent-trust-hub — plannotator-visual-explainer