source-driven-development
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill reads standard dependency files (such as
package.json,requirements.txt, andCargo.toml) to determine framework versions. This is a routine operation for developer tools and does not involve executing dangerous system commands. - [EXTERNAL_DOWNLOADS]: The skill fetches content from official documentation sites including
react.dev,docs.djangoproject.com, andMDN. These are well-known and trusted technical repositories. - [DATA_EXFILTRATION]: No sensitive local data or credentials are targeted for extraction. The skill's focus is on retrieving public technical documentation to ground its responses.
- [PROMPT_INJECTION]: The instructions are focused on adherence to official documentation and do not contain patterns designed to bypass safety filters or override system-level constraints.
Audit Metadata