fw-review
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The script
scripts/fdk-errors-warnings.jsexecutes thefdk validatecommand. This execution is performed usingchild_process.spawnwithshell: false, which prevents shell injection vulnerabilities. This is a standard operation for the intended purpose of the tool. - [DATA_EXPOSURE]: The skill scans application source code for sensitive information such as hardcoded credentials and OAuth secrets (e.g., in
scripts/oauth-config-usage.js). This behavior is a core security auditing feature of the skill. The skill does not perform any network operations to exfiltrate this data. - [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted application code during the audit process. This creates a potential surface for indirect prompt injection if malicious files are included in the audited project. However, the risk is mitigated by the use of deterministic Node.js scripts for most checks, which process the content as raw text rather than executable instructions for the LLM.
Audit Metadata