jetson-init-image
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill generates commands using sudo to extract root filesystems and run the apply_binaries.sh script. This is a standard and required procedure for NVIDIA Jetson Board Support Package (BSP) initialization to ensure correct file permissions and device node creation in the sample rootfs.
- [EXTERNAL_DOWNLOADS]: The skill instructions explicitly state that tarballs should not be downloaded and must be staged on disk beforehand. This minimizes supply chain risks by relying on user-provided local assets and avoids fetching potentially untrusted code from external sources.
- [SAFE]: No malicious patterns such as obfuscation, credential harvesting, unauthorized persistence, or prompt injection were detected. The metadata and behavior are consistent with its stated purpose as an NVIDIA development tool.
Audit Metadata