code-security
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill's installation scripts and agent instructions automate the installation of the
semgreputility from the official Python Package Index (PyPI). This is a standard dependency management practice for a well-known security tool. - [COMMAND_EXECUTION]: The skill defines several shell commands that invoke
semgrepto scan the local project directory. These commands are used as intended for security auditing and reporting, including scanning for OWASP vulnerabilities and secret leakage.
Audit Metadata