Skills
skills/microsoft/typespec/minimal-repro/Gen Agent Trust Hub

minimal-repro

Pass

Audited by Gen Agent Trust Hub on Jun 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • Command Execution: The skill performs shell commands such as npx tsp compile and rm to manage reproduction files and test the TypeSpec compiler. These operations are restricted to the workspace or temporary directories as described in the instructions.
  • External Downloads: The skill may utilize npm install to fetch additional packages if a reproduction requires dependencies not present in the local environment. This involves downloading code from external registries.
  • Processing Untrusted Content: The skill is designed to ingest and process TypeSpec source code from user input or external URLs. This presents a potential surface for indirect prompt injection, where embedded content might attempt to influence the agent's behavior during the reproduction or minimization steps.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 19, 2026, 03:20 PM
Security Audit — agent-trust-hub — minimal-repro