manipulate-xcodeproj
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (MEDIUM): The skill instructs installation via 'brew install xcp'. In standard Homebrew repositories, 'xcp' is a Rust-based file copying tool, not an Xcode project manager. This discrepancy makes the dependency unverifiable and potentially misleading.
- [COMMAND_EXECUTION] (SAFE): Executes shell commands to modify project structures, which is consistent with its intended use as an Xcode management skill.
- [PROMPT_INJECTION] (LOW): Surface for Indirect Prompt Injection (Category 8). Ingestion points: Reads .xcodeproj and .xcassets files from the workspace. Boundary markers: None mentioned. Capability inventory: File system write operations (add, move, delete) and build setting modifications. Sanitization: None provided for data ingested from project files.
Audit Metadata