claude-md-init
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses local Node.js scripts (
scripts/generate-claude-md.cjsandscripts/section-builders.cjs) to process project data and update documentation. These operations are performed entirely on local files and do not involve network requests or the execution of untrusted code.\n- [SAFE]: Analysis of the source code reveals no evidence of prompt injection, data exfiltration, or obfuscation. The skill follows security best practices by implementing an automatic backup mechanism (.claude-md.backup) and using explicit section markers (<!-- SECTION:key -->) to avoid unintentional overwriting of user-defined content.
Audit Metadata