oss-launch-kit
Pass
Audited by Gen Agent Trust Hub on May 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No high-severity security issues were detected. The skill's architecture relies on deterministic Python logic for data transformation and lacks common attack vectors like obfuscation, persistence, or privilege escalation.
- [EXTERNAL_DOWNLOADS]: The skill utilizes the
requestslibrary to fetch repository metadata and README documentation from the official GitHub API (api.github.com). This is a well-known service and the operation is necessary for the skill's stated purpose of project analysis. - [DATA_EXFILTRATION]: No evidence of unauthorized data transmission or credential harvesting was found. The skill follows security best practices by using environment variables for the optional
GITHUB_TOKENand does not access sensitive local file paths. - [COMMAND_EXECUTION]: The Python scripts perform safe string processing and JSON parsing. No dangerous execution sinks, shell command spawning, or dynamic code evaluation (eval/exec) were identified in the orchestration logic.
- [PROMPT_INJECTION]: The skill processes untrusted content from external GitHub repositories, which represents an indirect prompt injection surface. This is handled with appropriate safeguards for its context.
- Ingestion points:
scripts/fetch_repo_context.py(readsreadme_textand repository metadata from the GitHub API). - Boundary markers: Not explicitly utilized in output templates, though the content is primarily used for drafting coordination strategies.
- Capability inventory:
scripts/run.pyand associated scripts are limited to reading API data and writing the final report to a local file system path. - Sanitization:
scripts/build_product_brief.pyimplements regex-based sanitization (_strip_markdown,_clean) to remove markdown formatting and normalize whitespace in external content.
Audit Metadata