migrating-from-v3
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill analyzes local project files such as HTML, JSX, and CSS, which creates a potential surface for indirect prompt injection. 1. Ingestion points: The agent uses Read, Grep, and Glob to analyze the existing codebase. 2. Boundary markers: There are no explicit delimiters or warnings to ignore instructions found within the project files. 3. Capability inventory: The agent is authorized to use Bash, Write, and Edit tools, which could be exploited if an injection is successful. 4. Sanitization: No sanitization of the project content is performed before processing.
- [External Downloads] (SAFE): The skill recommends installing official Tailwind CSS packages and using the official upgrade tool via npx. These are standard practices from reputable sources in the development ecosystem and are handled as low-risk per trust-scope rules.
- [Command Execution] (SAFE): The provided shell commands, such as using find and sed for text replacement, are standard administrative operations intended solely for the migration task.
Audit Metadata