redpanda-frontend-kit
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [DYNAMIC_EXECUTION]: The skill generates local shell scripts, such as
.claude/hooks/react-rules-check.sh, from internal templates. These scripts are used for project-specific enforcement, such as banning legacy UI libraries during the development process. - [INDIRECT_PROMPT_INJECTION]: The skill contains logic that is conditional based on the contents of the project's
package.jsonfile, specifically for detecting protobuf versions to select appropriate toolchain variants. - Ingestion points: Project
package.jsonfile. - Boundary markers: None explicitly defined in the logic.
- Capability inventory: Includes the ability to write to
.claude/hooks/and modify project environment configuration files. - Sanitization: Employs standard string matching for version detection.
- [COMMAND_EXECUTION]: Automates the initialization of the development toolchain by executing shell commands to configure environment variables and verify the execution status of setup scripts.
Audit Metadata