golang-dependency-management
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: The skill documents industry-standard security practices for Go development, including the importance of committing cryptographic checksums (go.sum) and performing reachability-based vulnerability analysis.
- [EXTERNAL_DOWNLOADS]: Recommends the installation of govulncheck from the Go team's trusted repository (golang.org/x/vuln).
- [EXTERNAL_DOWNLOADS]: Mentions well-known and established community tools for dependency management and analysis, such as golangci-lint, go-mod-outdated, and goweight.
- [EXTERNAL_DOWNLOADS]: References the go-size-analyzer (gsa) and go-mod-graph tools, the latter being a resource maintained by the skill author.
Audit Metadata