golang-popular-libraries
Pass
Audited by Gen Agent Trust Hub on May 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill promotes a 'Standard Library First' philosophy, encouraging developers to use built-in Go packages (like net/http, log/slog, and slices) before reaching for external dependencies, which reduces the overall supply chain attack surface.
- [SAFE]: All external libraries referenced in the documentation (e.g., Gin, GORM, Zap, Cobra) are established, reputable, and widely used projects within the Go community.
- [SAFE]: The skill configuration in the YAML frontmatter uses 'allowed-tools' to scope the agent's capabilities to relevant development tools (go, git, golangci-lint) without introducing dangerous or unnecessary permissions.
- [SAFE]: No evidence of obfuscated URLs, remote code execution patterns, or unauthorized data exfiltration attempts was found across the skill's files.
Audit Metadata