flutter-plugins
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill utilizes the official Flutter SDK, which is a trusted tool for developer workflows.
- [COMMAND_EXECUTION]: Executed commands are limited to standard 'flutter' CLI operations for creating, building, and testing plugins locally within the user-defined project directory.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface. 1. Ingestion points: User-provided plugin and organization names (SKILL.md, Step 1). 2. Boundary markers: None present in command templates. 3. Capability inventory: 'flutter create' and shell navigation 'cd' (SKILL.md, Steps 2, 4, 6). 4. Sanitization: None specified within the skill instructions. This surface is assessed as safe given the primary purpose of local project scaffolding.
Audit Metadata