npm-publish
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses standard development commands such as npm install, npm test, npm audit, and git log to verify package status and prepare for release. These operations are performed in the local project context and are necessary for the skill's stated purpose.
- [PROMPT_INJECTION]: The skill processes data from git log and existing CHANGELOG.md files to generate release notes. While this represents a surface for indirect prompt injection from commit messages, it is a core feature of the automated workflow and the data is treated as text for documentation.
- Ingestion points: git log output and CHANGELOG.md content read during Step 3.
- Boundary markers: Not identified; commit messages are parsed and formatted into markdown bullet points.
- Capability inventory: File system modification (package.json, CHANGELOG.md, README.md, LICENSE) and shell command execution (npm, git, npx).
- Sanitization: None; the skill groups and formats entries but does not filter the text of commit messages.
Audit Metadata