skills/sap/fundamental-ngx/scaffold/Gen Agent Trust Hub

scaffold

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes the nx CLI to perform project builds and verify code compilation. This is a functional requirement for component validation and is restricted to the tools permitted in the skill configuration.
  • [PROMPT_INJECTION]: The skill processes user-provided pattern names and file paths to generate code. This represents a standard interaction surface for scaffolding tools.
  • Ingestion points: $ARGUMENTS in SKILL.md and interactive prompts for component names/paths.
  • Boundary markers: Absent; the skill relies on the agent's default handling of interpolated variables.
  • Capability inventory: The skill has access to Write, Edit, and restricted Bash (nx) tools across all scripts.
  • Sanitization: No explicit validation or sanitization of user input is specified in the skill instructions, relying on platform-level tool safety.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 12:33 PM
Security Audit — agent-trust-hub — scaffold