capgo-native-builds
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill uses the official Capgo CLI via
npx @capgo/cli@latest. This is a vendor-provided tool and is considered a safe external dependency. - [COMMAND_EXECUTION]: The instructions guide the agent to execute shell commands for mobile application builds and credential management using the Capgo CLI. These actions are within the intended scope of the skill.
- [CREDENTIALS_UNSAFE]: The skill describes the management of sensitive build credentials such as iOS certificates and Android keystores. It correctly advises using the CLI's internal management commands to keep these credentials local and secure rather than exposing them.
Audit Metadata