Skills
skills/cap-go/capgo-skills/capacitor-plugin-upgrade-v6-to-v7/Gen Agent Trust Hub

capacitor-plugin-upgrade-v6-to-v7

Pass

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: No malicious patterns, obfuscation, or unauthorized data access were identified in the skill instructions or metadata.
  • [COMMAND_EXECUTION]: The skill instructs the agent to run npm install to update dependencies. This is a routine operation for the specified task of plugin migration.
  • [PROMPT_INJECTION]: This skill presents an indirect prompt injection surface as it ingests untrusted data from project files. Evidence: 1. Ingestion points: reads package.json (SKILL.md). 2. Boundary markers: absent. 3. Capability inventory: executes npm install and modifies files. 4. Sanitization: absent. This risk is inherent to the skill's purpose and is considered low.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 20, 2026, 03:43 AM