capacitor-security
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill suggests using bunx to execute the capsec scanner package from the vendor's repository. This is a standard procedure for the skill's primary purpose of security auditing.
- [COMMAND_EXECUTION]: The skill provides various CLI command examples for scanning directories, configuring rules, and generating security reports. These are intended for legitimate security auditing tasks.
- [SAFE]: All external URLs and dependencies are associated with the vendor (Cap-go), official frameworks (Capacitor/Ionic), or reputable security organizations (OWASP). No evidence of obfuscation, exfiltration, or unauthorized persistence was found.
Audit Metadata