Skills
skills/jeremylongshore/claude-code-plugins-plus/ideogram-upgrade-migration/Gen Agent Trust Hub

ideogram-upgrade-migration

Pass

Audited by Gen Agent Trust Hub on Apr 4, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses dynamic context injection (!) to execute npm list for environment inspection. It also provides grep commands to help users audit their code for legacy API usage. These operations are benign and serve the intended purpose of the migration tool.
  • [PROMPT_INJECTION]: The provided code templates ingest user-supplied prompt data for the Ideogram API. While this creates a data ingestion surface, it is a necessary functional component of an image generation adapter and lacks malicious instructions.
  • Ingestion points: options.prompt and options.negativePrompt in src/ideogram/adapter.ts.
  • Boundary markers: None present in the documentation-based code samples.
  • Capability inventory: Performs standard HTTPS requests to the official api.ideogram.ai domain.
  • Sanitization: Input sanitization is expected to be managed by the developer implementing the provided templates.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 4, 2026, 05:41 PM