Skills
skills/cristoslc/swain/swain-update/Gen Agent Trust Hub

swain-update

Warn

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: Executes shell commands to detect local installations, manage backups, and perform update operations.
  • [EXTERNAL_DOWNLOADS]: Fetches code updates from the author's GitHub repository (github.com/cristoslc/swain) and via npx. These actions target the vendor's own infrastructure and well-known services.
  • [COMMAND_EXECUTION]: Employs the eval command to expand environment variables and shell shortcuts (like ~) stored in the references/agent-platforms.json file. While the file is local to the skill, using eval on data strings can present a security risk if the source data is manipulated.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Apr 7, 2026, 02:45 PM