Source provenance
Source provenance is broadly covered in current results.
100% (2/2)
Rollout signal scan
Biggest gaps: package integrity. 0 entries have 2+ required gaps.
Source provenance
Source provenance is broadly covered in current results.
100% (2/2)
Metadata review
Metadata review is broadly covered in current results.
100% (2/2)
Safety notes
Safety notes is broadly covered in current results.
100% (2/2)
Privacy notes
Privacy notes is broadly covered in current results.
100% (2/2)
Package integrity
Package integrity is sparse; verify before rollout decisions.
0% (0/2)
Install payload
Install payload is broadly covered in current results.
100% (2/2)
Most at-risk entries in this view
Adoption queue
0/2 visible results are ready for staged adoption under this preset.
No required blockers for this preset.
64/100
Collect package checksum or signed artifact information.
rules/ai-generated-command-injection-review-rules · trust review · confidence 83%
No required blockers for this preset.
64/100
Collect package checksum or signed artifact information.
rules/safe-shell-command-rules · trust review · confidence 83%
Decision confidence
0/2 results are high-confidence for the selected preset.
Address Package integrity before broader rollout.
68/100
rules/ai-generated-command-injection-review-rules · trust review
Address Package integrity before broader rollout.
68/100
rules/safe-shell-command-rules · trust review
Freshness distribution
Median age 22 days; all 2 scanned entries are within 90 days.
Fresh
≤ 30 days
1 entry
Recent
31–90 days
1 entry
Aging
91–180 days
0 entries
Stale
> 180 days
0 entries
Source-backed rules for reviewing AI-generated code that builds or runs operating-system commands, shell invocations, or subprocesses before merge for command injection and argument injection risk, covering library alternatives to shelling out, array-form process APIs, allowlist input validation, and least-privilege execution.
Source-backed rules for AI coding agents that propose, compose, review, or run shell commands during coding sessions where quoting, expansion, command injection, file writes, network calls, and destructive operations can cause harm.