maintain-cross-platform
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The installer ('bin/cli.js') and release scripts perform various system operations including directory cleanup, file system writes, and execution of shell commands such as 'npm install', 'git tag', and 'sed' for version management.
- The installer implements dynamic path resolution for 'require()' calls to maintain cross-platform compatibility, specifically normalizing file paths on Windows systems.
- The skill manages the installation of git pre-push hooks to enforce validation rules during the development lifecycle.
- [PROMPT_INJECTION]: The skill establishes a workflow that ingests data from markdown files to generate executable agents and commands, creating a surface for indirect prompt injection.
- Ingestion points: 'plugins//commands/.md', 'plugins//agents/.md', and 'plugins//skills//SKILL.md' are processed by the installer to create platform-specific configurations.
- Boundary markers: The analysis found no evidence of explicit delimiters or instructions to ignore embedded prompts within the source files during transformation.
- Capability inventory: The resulting agents are granted permissions for tools including 'Bash', 'Read', 'Edit', and 'Task'. The maintenance scripts possess administrative capabilities for versioning and publishing.
- Sanitization: No comprehensive sanitization or escaping of the source markdown content is documented, beyond basic UI label truncation logic.
- [EXTERNAL_DOWNLOADS]: The installation process fetches external dependencies from the npm registry and the Claude plugin marketplace ('agent-sh/agentsys').
Audit Metadata