Skills
skills/jeffallan/claude-skills/nestjs-expert/Gen Agent Trust Hub

nestjs-expert

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill incorporates extensive security best practices for NestJS development, including mandatory use of validation pipes, secure credential management via environment variables, and robust authentication guards.
  • [PROMPT_INJECTION]: The skill has an indirect prompt injection surface because it generates backend code based on user-provided requirements.
  • Ingestion points: The skill reads user requirements in SKILL.md to generate modules, services, and controllers.
  • Boundary markers: The prompt templates do not include specific delimiters or instructions to ignore malicious commands embedded in user input.
  • Capability inventory: The skill generates executable TypeScript code and instructs the user to execute shell commands like npm run test and nest info to verify the code.
  • Sanitization: There is no evidence of input sanitization or verification of the content of the generated code against malicious patterns.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 06:35 AM