jetson-init-source

Pass

Audited by Gen Agent Trust Hub on Jun 22, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill employs standard Linux utilities such as git, tar, mkdir, ln, and cp to organize the workspace and manage the source tree layout.
  • [EXTERNAL_DOWNLOADS]: Fetches source code via git clone from repositories defined in the user profile, which typically point to official NVIDIA GitLab instances (gitlab.com/nvidia/nv-tegra or nv-tegra.nvidia.com) for component synchronization.
  • [REMOTE_CODE_EXECUTION]: Executes the local source_sync.sh script, a standard component of the NVIDIA L4T (Linux for Tegra) BSP image, to facilitate the automated downloading of kernel and hardware-specific source components.
  • [SAFE]: The skill implements established Jetson development procedures and includes validation steps for the toolchain (verifying the existence of aarch64-*-linux-gnu-gcc). It uses robust YAML handling for profile updates and is signed by NVIDIA.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 22, 2026, 08:45 PM
Security Audit — agent-trust-hub — jetson-init-source