Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/clerk-upgrade-migration/Gen Agent Trust Hub

clerk-upgrade-migration

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses npm and pnpm tools to perform version checks, install updates, and run local validation scripts such as npm test and npm run typecheck.
  • [EXTERNAL_DOWNLOADS]: The skill installs the @clerk/nextjs package from the public npm registry as part of its primary upgrade functionality.
  • [PROMPT_INJECTION]: An indirect prompt injection surface is present.
  • Ingestion points: The skill reads code from the local project repository using the Read tool as described in SKILL.md.
  • Boundary markers: The instructions do not specify the use of delimiters or 'ignore' instructions for the data being read.
  • Capability inventory: The skill has access to Write, Edit, and Bash tools as specified in SKILL.md.
  • Sanitization: No specific sanitization or validation of the ingested code content is mentioned.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 11:52 AM