Skills
skills/even-realities/everything-evenhub/build-and-deploy/Gen Agent Trust Hub

build-and-deploy

Pass

Audited by Gen Agent Trust Hub on Apr 26, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill follows secure software development life cycle practices by enforcing validation of configuration files before execution.
  • [COMMAND_EXECUTION]: Uses standard build and packaging commands like npm run build and npx evenhub pack which are appropriate for the application development context.
  • [EXTERNAL_DOWNLOADS]: Accesses the evenhub packaging utility via the npm registry, which is the standard delivery method for vendor-provided developer tools.
  • [SAFE]: Evaluated for potential indirect prompt injection. The skill ingests app.json (Ingestion points), provides a clear field reference for validation (Boundary markers), utilizes standard build tools like npm and Bash (Capability inventory), and explicitly instructs the agent to fix or report invalid fields based on specific rules (Sanitization).
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 26, 2026, 09:55 PM
Security Audit — agent-trust-hub — build-and-deploy