grafana-foundation-sdk
Pass
Audited by Gen Agent Trust Hub on Jun 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructs users to install official libraries from the grafana organization on NPM (@grafana/grafana-foundation-sdk) and GitHub (github.com/grafana/grafana-foundation-sdk/go). These are well-known, trusted sources for Grafana-related development tools.
- [COMMAND_EXECUTION]: The skill provides standard development commands for package management (npm install, pnpm add, go get) and script execution (tsx generate.ts, npx tsc). These commands are necessary for the development workflow described and do not pose a security risk in this context.
- [SAFE]: The code examples demonstrate the use of standard Node.js and Go file system operations to write generated JSON content to local files. These operations are restricted to the project's dashboard directories as part of the intended dashboard-as-code workflow.
- [SAFE]: The skill provides guidance on integrating generated dashboards with Kubernetes using Helm and ConfigMaps, which is a common and secure pattern for managing observability infrastructure.
Audit Metadata