Skills
skills/mksglu/context-mode/ctx-upgrade/Gen Agent Trust Hub

ctx-upgrade

Warn

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses a shell command string to locate a Node.js script relative to the current directory and executes it using the node runtime.
  • Evidence: CLI="<PLUGIN_ROOT>/cli.bundle.mjs"; [ ! -f "$CLI" ] && CLI="<PLUGIN_ROOT>/build/cli.js"; node "$CLI" upgrade
  • [REMOTE_CODE_EXECUTION]: The skill initiates an upgrade process that, by definition, fetches new code from a remote repository (GitHub) and installs it on the local system, which involves executing remote updates.
  • Evidence: Description indicates the skill will "Update context-mode from GitHub... Pulls latest, builds, installs."
  • [EXTERNAL_DOWNLOADS]: The skill performs network operations to fetch updates from GitHub to facilitate the plugin reinstallation.
  • Evidence: Instructions specify pulling the latest code from GitHub as a core step in the upgrade routine.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 10, 2026, 11:26 PM