Skills
skills/leokemp223/embed-ai-tool/build-cmake/Gen Agent Trust Hub

build-cmake

Pass

Audited by Gen Agent Trust Hub on Apr 19, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The scripts/cmake_builder.py utility invokes cmake, ninja, and make using subprocess.run with list-based arguments. This is the primary and expected function of the skill; the implementation is secure as it avoids the use of shell=True, preventing shell injection vulnerabilities from user-supplied build parameters.
  • [EXTERNAL_DOWNLOADS]: The skill verifies the presence of local toolchains (such as arm-none-eabi-gcc) using shutil.which but does not perform any remote downloads or execution of external scripts.
  • [DATA_EXFILTRATION]: File access is restricted to the project's source and build directories for reading configuration (CMakeLists.txt, CMakePresets.json) and locating output binaries. No network exfiltration or sensitive user directory access was detected.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 19, 2026, 06:24 AM