skills/jeremylongshore/claude-code-plugins-plus-skills/supabase-upgrade-migration/Gen Agent Trust Hub
supabase-upgrade-migration
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, obfuscation, or security risks were identified in the skill metadata or reference files.
- [COMMAND_EXECUTION]: The skill utilizes npm and git tools through the Bash tool for their intended purposes of versioning and dependency management. Evidence: SKILL.md restricts tools to Bash(npm:) and Bash(git:).
- [PROMPT_INJECTION]: While the skill processes project source code to identify migration paths (a potential surface for indirect prompt injection), no instructions attempting to subvert agent behavior were found.
- [CREDENTIALS_UNSAFE]: Examples for client configuration use 'xxx' placeholders rather than hardcoded secrets. Evidence: references/examples.md uses 'xxx' for the apiKey field.
Audit Metadata