upgrade-packages-js
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses inline Node.js scripts and shell commands to validate project environments, manage git branches, and retrieve package manager metadata. These operations are standard for dependency management automation.
- [EXTERNAL_DOWNLOADS]: It fetches package information from the npm registry and performs web searches to identify migration documentation and changelogs, ensuring upgrades are informed by relevant external data.
- [REMOTE_CODE_EXECUTION]: The skill employs npx to run established community utilities such as npm-check-updates and framework codemods, which are standard tools for analyzing and migrating JavaScript codebases.
Audit Metadata