capacitor-plugin-spm-support
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches the capacitor-swift-pm support library from the official Ionic Team repository on GitHub to enable the migration process.
- [COMMAND_EXECUTION]: Executes shell commands including npm install and swift package resolve to synchronize project dependencies and verify the build state.
- [PROMPT_INJECTION]: The skill identifies an indirect prompt injection surface where it ingests and processes untrusted project metadata and search results to drive code generation and shell commands. 1. Ingestion points: Reads configuration data from package.json, .podspec, and Swift source files, and incorporates web search results for dependency resolution. 2. Boundary markers: There are no explicit delimiters or instructions to ignore embedded prompts within the files being processed. 3. Capability inventory: The agent has permissions to modify the file system (write and delete files) and execute shell commands. 4. Sanitization: No explicit validation or escaping is applied to the extracted data before it is interpolated into code or used in command execution.
Audit Metadata