Skills
skills/cognitedata/builder-skills/setup-flows-auth/Gen Agent Trust Hub

setup-flows-auth

Pass

Audited by Gen Agent Trust Hub on May 7, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill installs official vendor libraries (@cognite/dune, @cognite/sdk, @cognite/app-sdk) and standard development tools (@tanstack/react-query, vite-plugin-mkcert) from the npm registry.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to execute routine package manager commands (npm install, yarn add, pnpm add) to set up project dependencies.
  • [PROMPT_INJECTION]: The skill analyzes configuration files to automate project setup.
  • Ingestion points: Reads app.json and package.json to determine infrastructure and dependency requirements.
  • Boundary markers: Does not specify explicit markers or warnings to isolate ingested configuration content.
  • Capability inventory: Employs the Write, Edit, and Bash tools to modify the project structure and install software.
  • Sanitization: No explicit validation or escaping of values from app.json is specified before they are interpolated into code templates.
Audit Metadata
Risk Level
SAFE
Analyzed
May 7, 2026, 06:06 PM