Skills
skills/tracekit-dev/tracekit-for-ai/tracekit-node-sdk/Gen Agent Trust Hub

tracekit-node-sdk

Pass

Audited by Gen Agent Trust Hub on Apr 15, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill references a local bootstrap script, ./scripts/run-tracekit-auth.sh, to check the authentication status and manage the registration flow.
  • [EXTERNAL_DOWNLOADS]: The instructions require installing the @tracekit/node-apm package from the npm registry, which is a verified vendor-owned resource.
  • [PROMPT_INJECTION]: The instructions contain guidance for the agent's interaction flow, such as avoiding manual sign-up prompts if local credentials already exist. This is evaluated as a workflow optimization rather than an attempt to maliciously conceal agent actions.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 15, 2026, 12:37 PM