Skills
skills/codervisor/forge/monorepo-version-sync/Gen Agent Trust Hub

monorepo-version-sync

Pass

Audited by Gen Agent Trust Hub on Mar 4, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill facilitates the execution of local TypeScript automation scripts (e.g., sync-versions.ts, prepare-publish.ts, restore-packages.ts) via the pnpm tsx runner. These scripts are used for project maintenance tasks such as updating version strings in package.json and Cargo.toml files.
  • [DATA_EXPOSURE]: File system access is limited to reading and writing project manifest files within the workspace. No attempts to access sensitive system files (e.g., SSH keys), environment secrets, or hardcoded credentials were identified.
  • [REMOTE_CODE_EXECUTION]: The skill does not contain any patterns for downloading and executing remote scripts or binaries. All automation logic is provided in the local template files.
  • [SAFE]: The skill implements standard monorepo management workflows. It includes safety features such as backup file creation (.backup) and validation steps to ensure workspace:* protocols are correctly handled before publishing to registries like npm.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 4, 2026, 07:16 AM