opt-chat-install
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs standard environment discovery using benign shell commands (e.g., grep, find, node -e) to identify project configuration and installed versions.
- [SAFE]: Package installations are performed through official registries (NPM and GitHub Packages) using standard package manager commands. The skill correctly identifies the vendor's own packages and well-known dependencies like the Vercel AI SDK.
- [SAFE]: The skill follows security best practices for secret management by instructing the user to use environment variables for authentication tokens in the generated .npmrc configuration instead of hardcoding credentials.
Audit Metadata