skills/jeremylongshore/claude-code-plugins-plus-skills/langchain-migration-deep-dive/Gen Agent Trust Hub
langchain-migration-deep-dive
Warn
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill's migration examples include a calculate tool that utilizes the Python eval() function. This pattern allows for the execution of arbitrary Python code if the input string is not strictly sanitized, posing a risk of code execution within the agent's environment.
- [COMMAND_EXECUTION]: The assessment logic performs recursive file system operations, reading file contents within the src/ directory to detect migration patterns. While functional for its purpose, it demonstrates a capability for broad local file system access.
Audit Metadata