Skills
skills/cap-go/capgo-skills/capacitor-plugin-upgrade-v4-to-v5/Gen Agent Trust Hub

capacitor-plugin-upgrade-v4-to-v5

Pass

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to run npm install (SKILL.md, Procedure step 5). This is a standard operation in the context of a plugin migration and is considered safe given the intended purpose.
  • [EXTERNAL_DOWNLOADS]: Running npm install involves downloading packages from the official npm registry. This is a well-known and expected service for the described workflow.
  • [PROMPT_INJECTION]: The skill demonstrates an indirect prompt injection surface by reading and processing local project files.
  • Ingestion points: The skill reads the package.json file to determine version ranges (SKILL.md, Procedure step 1).
  • Boundary markers: There are no explicit instructions to ignore potentially malicious content within the user's package.json.
  • Capability inventory: The skill possesses the ability to modify local files and execute package manager commands (npm install).
  • Sanitization: The skill does not perform validation or sanitization of the data read from the project files before acting on it.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 20, 2026, 03:43 AM