security-scanning-security-sast
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides a legitimate toolset and documentation for security analysis using industry-recognized standards and provides educational guidance on secure coding practices.
- [COMMAND_EXECUTION]: The provided Python scanner implementation executes external security tools via subprocess calls. The use of list-based arguments is a secure pattern that prevents command injection vulnerabilities.
- [EXTERNAL_DOWNLOADS]: The skill provides instructions for installing reputable security auditing packages from official repositories such as PyPI and NPM.
Audit Metadata