docs-workflows

Pass

Audited by Gen Agent Trust Hub on May 18, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill instructs the agent to fetch metadata and download assets (such as thumbnails and icons) from Bilibili, Juejin, and third-party IDE websites using browser tools and curl. This is performed specifically to populate tutorial grids and configuration files.
  • [COMMAND_EXECUTION]: Orchestrates repository maintenance by running local Node.js scripts (scripts/fix-config-hardlinks.mjs, scripts/generate-prompts.mjs) and platform tools like the GitHub CLI (gh issue create) and npm for building internal prompt data.
  • [DATA_EXFILTRATION]: Downloads remote image assets to temporary local storage and subsequently uploads them to the project's cloud storage environment using vendor-provided tools (manageStorage) to host documentation assets.
Audit Metadata
Risk Level
SAFE
Analyzed
May 18, 2026, 04:58 PM
Security Audit — agent-trust-hub — docs-workflows