ctx-upgrade
Warn
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local JavaScript file (cli.bundle.mjs or cli.js) using Node.js to run an upgrade command.
- [REMOTE_CODE_EXECUTION]: The upgrade process pulls the latest source code from GitHub and executes the build/install routine, effectively running remotely-sourced code.
- [EXTERNAL_DOWNLOADS]: The skill description explicitly mentions pulling the latest version from GitHub and updating global npm packages, which involves fetching and installing third-party code from external repositories.
Audit Metadata