Skills
skills/smithery-ai/cli/smithery-homepage/Gen Agent Trust Hub

smithery-homepage

Pass

Audited by Gen Agent Trust Hub on May 2, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes shell commands to scaffold the application directory, initialize a git repository, and manage the dashboard daemon via the smithery CLI tools.
  • [EXTERNAL_DOWNLOADS]: The skill downloads the TanStack Start framework and UI components using npx shadcn and npm install, specifically utilizing a shadcn preset (b1FSjVe3E) to initialize the project structure.
  • [CREDENTIALS_UNSAFE]: The skill is designed to read the user's Smithery API key and namespace from the local settings file (~/Library/Application Support/smithery/settings.json) and store them in a .env file within the project. This configuration is necessary for the dashboard to authenticate with the Smithery Connect API.
Audit Metadata
Risk Level
SAFE
Analyzed
May 2, 2026, 01:36 AM