dependency-resolver
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill focuses on assisting developers with legitimate dependency management tasks using standard ecosystem tools.
- [COMMAND_EXECUTION]: The skill recommends several diagnostic commands (e.g.,
npm ls,pipdeptree,cargo tree,mvn dependency:tree). These are read-only operations used to inspect dependency graphs and do not execute untrusted code or exfiltrate data. - [DATA_EXPOSURE]: The skill's instructions involve reading standard manifest and lock files (e.g., package.json, go.mod) and do not access sensitive environment variables, secrets, or system-level configuration files.
Audit Metadata