Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/adobe-upgrade-migration/Gen Agent Trust Hub

adobe-upgrade-migration

Pass

Audited by Gen Agent Trust Hub on Apr 8, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill references and installs official Adobe SDK packages from the public NPM registry.
  • Evidence: npm install @adobe/pdfservices-node-sdk@latest and other Adobe-scoped packages.
  • The skill also points to official Adobe developer documentation for changelogs and migration guides.
  • [COMMAND_EXECUTION]: Uses standard development tools for dependency management and version control.
  • Evidence: Commands such as npm install, npm outdated, git checkout, and git commit are used to manage the SDK upgrade workflow.
  • [DATA_EXFILTRATION]: Interacts with well-known Adobe API endpoints for authentication and image processing.
  • Evidence: Requests are sent to ims-na1.adobelogin.com and image.adobe.io.
  • The skill correctly recommends using environment variables (process.env.ADOBE_CLIENT_ID, etc.) to handle credentials securely.
  • [CREDENTIALS_UNSAFE]: Proactively improves the security of the integrated application by guiding the user to migrate away from legacy JWT private keys.
  • Evidence: Explicitly instructs the user to remove the jsonwebtoken dependency and private key files as part of the transition to OAuth.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 8, 2026, 08:45 AM