Skills
skills/mgd34msu/goodvibes-gemini/review-scoring-rubric/Gen Agent Trust Hub

review-scoring-rubric

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill provides a legitimate rubric and set of commands for auditing codebases. No malicious patterns or bypasses were detected.
  • [COMMAND_EXECUTION]: The instructions involve the use of standard Linux utilities (grep, find, awk) to analyze local source code files for quality metrics and security flaws.
  • [EXTERNAL_DOWNLOADS]: The skill leverages the npm registry via npx to execute established static analysis tools like jscpd, madge, and escomplex.
  • [DATA_EXFILTRATION]: Usage of npm audit is documented for security checking, which involves official communication with the npm registry and does not constitute unauthorized data exfiltration.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 07:53 AM