vgv-create-project
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill configuration and instructions do not contain any malicious patterns or security vulnerabilities.
- [COMMAND_EXECUTION]: Tool calls are restricted to project scaffolding and dependency management through the Very Good CLI MCP server, which aligns with the skill's primary function.
- [DATA_EXFILTRATION]: There is no evidence of unauthorized data collection, access to sensitive local files, or hardcoded credentials.
- [PROMPT_INJECTION]: The instructions focus on user-intent inference and project naming conventions without attempting to bypass safety filters or override agent behavior.
Audit Metadata