Skills
skills/hitoshura25/claude-devtools/android-fastlane-setup/Gen Agent Trust Hub

android-fastlane-setup

Pass

Audited by Gen Agent Trust Hub on Feb 28, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill fetches the fastlane and screengrab gems from the official RubyGems registry.
  • [COMMAND_EXECUTION]: The skill executes gem install, bundle install, and mkdir for environment setup, and defines Fastlane lanes that execute gradle build tasks.
  • [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it integrates user-provided inputs and external files into its operations.
  • Ingestion points: The package_name input and the ../version.properties file accessed in the Fastfile.
  • Boundary markers: None identified. Data is interpolated directly into configuration files or parsed in Ruby logic without delimiters.
  • Capability inventory: The skill can install software packages, write to the file system, and execute system build commands (gradle).
  • Sanitization: There is no evidence of validation, escaping, or sanitization for the package name input or the content of the version properties file.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 28, 2026, 12:40 PM