browser-native
Pass
Audited by Gen Agent Trust Hub on Jun 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs local filesystem read operations scoped to
package.jsonfiles and workspace directories. No evidence of unauthorized file access, credential harvesting, or network-based data exfiltration was found. - [SAFE]: No remote code execution or untrusted dependency patterns were identified. The implementation relies on standard Node.js built-in modules (
node:fs,node:path). - [SAFE]: The skill uses ANSI escape sequences in
scripts/formatters/table.jsexclusively for terminal UI coloring and formatting, which is standard practice for CLI tools and does not constitute malicious obfuscation. - [SAFE]: Instructions in
SKILL.mdare descriptive and technical, focusing on the tool's auditing purpose without attempting to override agent safety guidelines or system prompts.
Audit Metadata