Skills
NYC
skills/microck/ordinary-claude-skills/react-native-setup/Gen Agent Trust Hub

react-native-setup

Warn

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • Privilege Escalation (MEDIUM): The skill suggests using sudo for xcodebuild -license accept and gem install cocoapods. While standard for certain installation steps on macOS, sudo allows for arbitrary command execution with root privileges. Since this is for the primary purpose of environment setup, the severity is reduced from HIGH to MEDIUM.
  • Persistence Mechanisms (MEDIUM): Recommends appending environment variables and path updates to shell profile files such as ~/.zshrc and ~/.bash_profile. This is a common technique to maintain execution persistence across terminal sessions. Since this is necessary for Android SDK configuration, the severity is reduced from HIGH to MEDIUM.
  • External Downloads (LOW): Facilitates the installation of packages from public registries like npm (npx react-native init), RubyGems (gem install cocoapods), and Homebrew (brew install watchman). These are generally considered low risk in a developer context.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Feb 17, 2026, 06:19 PM