kotlin-compiler-plugin-setup
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill facilitates the setup of a multi-module Gradle project structure for Kotlin compiler plugins. It correctly identifies and uses official libraries from trusted organizations, such as JetBrains (Kotlin compiler components) and Google (AutoService, KSP).
- [SAFE]: All external dependencies specified in the version catalog (example/libs.versions.toml) are reputable open-source libraries commonly used in the Kotlin ecosystem, such as Kotest and kctfork. No suspicious or unverified packages were detected.
- [SAFE]: The provided templates for publishing to Maven Central (references/publish-convention.md) follow secure practices by using standard Gradle properties for artifact signing and do not contain hardcoded credentials or sensitive data.
- [SAFE]: The project initialization logic involves creating local files and configurations based on user-provided metadata (project name, IDs). While this involves code generation, it is the primary and intended purpose of the skill and does not include any hidden or malicious behaviors.
Audit Metadata