graphify
Warn
Audited by Gen Agent Trust Hub on Apr 26, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill requires the user to install a global NPM package named 'graphify-ts', which is an unverified external dependency necessary for the skill's operation.
- [COMMAND_EXECUTION]: The skill establishes a persistence mechanism by executing the 'graphify hook install' command. This modifies the platform configuration file (~/.claude/settings.json) to install a 'Stop hook' that automatically triggers the graphify CLI at the conclusion of every agent session, resulting in persistent background code execution.
Audit Metadata