dev-workflow
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected in the skill instructions or metadata.
- [EXTERNAL_DOWNLOADS]: The skill guides the user to clone the project from its official GitHub repository and install dependencies using
npm install. These are standard development practices for the specified vendor's project. - [COMMAND_EXECUTION]: Outlines common development commands such as
npm run dev,npm run build, andnpm run lint. These are standard Next.js and Node.js scripts intended for local development and CI use. - [CREDENTIALS_UNSAFE]: Correctly identifies the need for environment variables and explicitly instructs the user to store them in local
.envfiles while warning against committing secrets to version control.
Audit Metadata