claude-code-sync
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security risks were identified. The skill's operations are confined to the local repository environment and align with its stated purpose of project maintenance.
- [COMMAND_EXECUTION]: The skill describes capabilities for recommending LSP server installations and repairing configuration drift. These features are triggered by repository analysis and are designed to be idempotent or require user confirmation for destructive changes.
- [DATA_EXFILTRATION]: Analysis confirms the absence of unauthorized network operations or data exfiltration patterns. The skill focuses on local file management within the
.claude/anddocs/context/directories. - [PROMPT_INJECTION]: No evidence of prompt injection or instructions to bypass safety guidelines was found. The merge protocols for documentation (e.g., CLAUDE.md) use explicit markers like
<!-- plugin:cc-setup managed -->to maintain boundaries between managed and user-curated content.
Audit Metadata