skill-infrastructure
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's instructions focus on deterministic, non-AI based health checks (linting, hashing, and parsing) to maintain library integrity, which is a defensive best practice.
- [SAFE]: References to the external repository
https://github.com/jacob-balslev/skill-graphare consistent with the skill's purpose and the author's identity, representing legitimate vendor resources. - [COMMAND_EXECUTION]: The skill describes maintenance workflows involving the execution of local scripts (e.g.,
scripts/skill-lint.js,scripts/skill-graph-drift.js). These are documented as part of the skill's core infrastructure management functionality and target local project files. - [DATA_EXPOSURE]: The skill identifies several local files as 'truth sources' (e.g.,
package.json,scripts/lib/roots.js) for grounding purposes. This is standard behavior for tools designed to audit or manage a specific codebase.
Audit Metadata