upgrade-react-native
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill fetches version metadata and unified diff files from 'raw.githubusercontent.com/react-native-community/rn-diff-purge'. While these are external assets, the source is a trusted community repository and the platform is whitelisted, downgrading the severity per [TRUST-SCOPE-RULE].
- [PROMPT_INJECTION] (LOW): Potential for indirect prompt injection as the skill processes external data (diffs and third-party READMEs). \n
- Ingestion points: RELEASES file, .diff files, and external repository READMEs. \n
- Boundary markers: Absent. \n
- Capability inventory: Write access to local project files (package.json, native code files). \n
- Sanitization: Absent; however, the impact is limited by the fact that changes are source-code modifications reviewed by the user rather than direct command execution.
- [COMMAND_EXECUTION] (SAFE): The skill explicitly instructs the AI not to run 'npm install' or 'pod install' automatically, providing a manual checklist for the user to ensure safety.
- [DATA_EXFILTRATION] (SAFE): Reads project-specific configuration (package.json, app.json) to perform the upgrade; no evidence of sensitive credential access or unauthorized network transmission.
Audit Metadata