Skills
skills/cometchat/cometchat-skills/cometchat-react-astro/Gen Agent Trust Hub

cometchat-react-astro

Pass

Audited by Gen Agent Trust Hub on Apr 15, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses npx @cometchat/skills-cli@latest to perform project detection, scaffolding, and installation. This involves downloading and executing the latest version of the vendor-provided utility from the npm registry.
  • [REMOTE_CODE_EXECUTION]: Instructions guide the agent to fetch component source code and styles directly from the vendor's official GitHub repository (raw.githubusercontent.com/cometchat/cometchat-uikit-react/...) using curl. This code is then intended to be integrated into the local project.
  • [COMMAND_EXECUTION]: The skill executes various shell commands including npx, grep, jq, and curl to automate the setup process. This includes reading project state from .cometchat/state.json and interacting with the local file system to modify configurations and install dependencies.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 15, 2026, 05:57 PM