Skills
skills/jamditis/claude-skills-journalism/electron-dev/Gen Agent Trust Hub

electron-dev

Warn

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • COMMAND_EXECUTION (MEDIUM): The skill provides patterns for integrating node-pty, which spawns system shells (powershell.exe, bash). This enables execution of arbitrary system commands. While standard for terminal applications, it represents a high-privilege capability.
  • EXTERNAL_DOWNLOADS (LOW): References third-party libraries including node-pty, peerjs, and electron-builder.
  • DATA_EXFILTRATION (LOW): WebRTC patterns connect to peerjs-server.com for signaling, which involves external network activity.
  • COMMAND_EXECUTION (LOW): Indirect Prompt Injection Surface. (1) Ingestion: terminal-write IPC channel. (2) Boundary markers: None. (3) Capability inventory: ptyProcess.write in SKILL.md. (4) Sanitization: No input validation is demonstrated in the snippets.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 17, 2026, 05:47 PM