nestjs-real-time

Pass

Audited by Gen Agent Trust Hub on Jun 24, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides standard documentation and code examples for NestJS developers. Security practices like JWT validation in lifecycle hooks and CORS configuration are encouraged.
  • [INDIRECT_PROMPT_INJECTION]: The skill is designed to analyze and generate code for file patterns like **/*.gateway.ts and **/*.controller.ts. While this defines an ingestion surface for untrusted code, the skill does not exhibit dangerous capabilities such as executing shell commands or making network requests with the processed data. This is a low-risk architectural pattern typical for developer-focused skills.
  • [EXTERNAL_DOWNLOADS]: Mentions the use of @socket.io/redis-adapter for scaling. This is a standard, well-known package in the NestJS/Socket.io ecosystem. No automated installation or remote script execution is present.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 24, 2026, 08:06 AM
Security Audit — agent-trust-hub — nestjs-real-time