xmake-custom-plugins
Pass
Audited by Gen Agent Trust Hub on May 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides technical guidance on using xmake's built-in APIs to create custom developer tools. No malicious patterns such as prompt injection, data exfiltration, or unauthorized command execution were identified.
- [COMMAND_EXECUTION]: The skill mentions the capability to 'shell out' and run other tasks (e.g.,
task.run("build")), which is standard and expected functionality for a build system automation tool. - [EXTERNAL_DOWNLOADS]: Documentation mentions core modules like
net.httpanddevel.git, which are part of the xmake framework used for dependency management and project setup. No specific malicious URLs or unauthorized remote code downloads are present. - [SAFE]: Installation instructions for plugins into
~/.xmake/plugins/follow the official xmake directory structure for user-level extensions.
Audit Metadata