Skills
skills/rstackjs/agent-skills/rsdoctor-analysis/Gen Agent Trust Hub

rsdoctor-analysis

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses the rsdoctor-agent CLI to perform data-fetch operations on build artifacts. It also utilizes npm commands for version verification and global package installation.
  • [EXTERNAL_DOWNLOADS]: The skill installs the @rsdoctor/agent-cli package from the npm registry. These downloads are within the scope of the skill's stated purpose and originate from the vendor's official package scope.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes rsdoctor-data.json files generated by build plugins. It mitigates potential injection risks by using a dedicated CLI tool with strict filtering (--filter), pagination, and token-based budget gates to ensure only expected data fields are processed.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 10:46 AM