solid-agents-project-scaffolder

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFE
Full Analysis
  • [PROMPT_INJECTION]: The instructions use strong language such as 'NEVER' and 'ALWAYS' to enforce technical constraints and best practices specific to SolidJS project configuration. These are legitimate instructional boundaries to ensure project functional integrity and do not attempt to bypass AI safety guardrails.
  • [EXTERNAL_DOWNLOADS]: The skill identifies and recommends standard, well-known dependencies from the SolidJS ecosystem, including @solidjs/start, vite-plugin-solid, and vinxi. These are standard libraries for the described web development tasks.
  • [COMMAND_EXECUTION]: Instructions provide standard CLI commands for project initialization, such as npm init solid@latest and npm create vite@latest. These are expected operations for a scaffolding utility.
  • [DATA_EXFILTRATION]: No suspicious network activity or sensitive data access patterns were identified. The skill promotes secure practices by including environment files (.env) in recommended .gitignore templates.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 09:18 AM
Security Audit — agent-trust-hub — solid-agents-project-scaffolder