optimize-images
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The SKILL.md file provides several benchmarking workflows that utilize standard shell commands such as find, du, awk, and wc to analyze image counts and file sizes.
- [EXTERNAL_DOWNLOADS]: The skill requires the installation of the 'sharp' image processing library via standard package managers like npm or bun, which is a common requirement for image processing tasks.
- [SAFE]: The optimization script (scripts/optimize-images.ts) contains logic to dynamically resolve its own installation path by checking environment variables and reading local plugin configuration files in the user's home directory. This is used to locate internal vendor libraries (resolve-root.ts and shared.ts) and is considered legitimate infrastructure logic for the plugin.
- [SAFE]: The script performs filesystem operations to read and overwrite image files with optimized versions, which is the primary intended purpose of the skill and is performed locally on specified directories.
Audit Metadata