Skills
skills/helderberto/skills/validate-code/Gen Agent Trust Hub

validate-code

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill automates linting and testing by executing npm run lint-fix, npm run lint, and npm test. These are standard development operations intended for validating code quality.\n- [INDIRECT_PROMPT_INJECTION]: The skill uses scripts defined in the local package.json to determine which commands to run. While safe for the user's own project, these scripts would run as defined by the repository owner.\n
  • Ingestion points: Reads script definitions from package.json in the current directory (SKILL.md).\n
  • Boundary markers: None; the skill directly maps JSON keys to shell commands.\n
  • Capability inventory: The npm run and npm test capabilities allow for the execution of shell commands as defined in the project configuration.\n
  • Sanitization: None provided; the skill assumes the local project configuration is trustworthy.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 08:12 PM
Security Audit — agent-trust-hub — validate-code