gsp-update
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses shell commands to identify the installation path, check the current version, and perform cleanup tasks such as removing cache files. These operations are scoped to the tool's own configuration directories.
- [EXTERNAL_DOWNLOADS]: Fetches the latest version information and changelog content from official sources, including the npm registry and the vendor's public GitHub repository. These actions are transparent and align with the skill's primary purpose.
- [REMOTE_CODE_EXECUTION]: Employs 'npx' to download and run the latest version of the 'get-shit-pretty' package. This is a standard deployment method for Node.js-based tools and includes a user confirmation step ('AskUserQuestion') before execution.
Audit Metadata