npm-publisher
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Command Execution (LOW): The skill relies on executing various shell commands (
git,npm,gh,npx) to automate the release process. While these are necessary for the skill's primary purpose, they represent a standard command execution surface. - Indirect Prompt Injection (LOW): The skill instructs the agent to analyze
git diffoutput and commit messages to determine the appropriate version bump (patch, minor, or major). - Ingestion points: Code changes and diff outputs processed during Step 3 (Determine Version Type).
- Boundary markers: Absent. The skill lacks instructions to treat diff content as data only or to ignore embedded instructions within the code being analyzed.
- Capability inventory: The agent can push to remote repositories (
git push), modify package configuration (npm version), and execute package binaries (npx). - Sanitization: Absent. There is no mention of sanitizing or filtering the content of the repository before the agent analyzes it.
Audit Metadata