nestjs-real-time
Pass
Audited by Gen Agent Trust Hub on Jun 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides standard documentation and code examples for NestJS developers. Security practices like JWT validation in lifecycle hooks and CORS configuration are encouraged.
- [INDIRECT_PROMPT_INJECTION]: The skill is designed to analyze and generate code for file patterns like
**/*.gateway.tsand**/*.controller.ts. While this defines an ingestion surface for untrusted code, the skill does not exhibit dangerous capabilities such as executing shell commands or making network requests with the processed data. This is a low-risk architectural pattern typical for developer-focused skills. - [EXTERNAL_DOWNLOADS]: Mentions the use of
@socket.io/redis-adapterfor scaling. This is a standard, well-known package in the NestJS/Socket.io ecosystem. No automated installation or remote script execution is present.
Audit Metadata