gpd-metadata-sync
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill documentation outlines the usage of the 'gpd' command-line utility for managing Google Play listings, assets, and metadata workflows. These commands are consistent with the skill's stated purpose of store synchronization and do not include any suspicious or unauthorized execution patterns.
- [PROMPT_INJECTION]: No instructions aimed at overriding agent behavior, bypassing safety filters, or extracting system prompts were identified in the skill's body or metadata.
- [CREDENTIALS_UNSAFE]: The skill does not contain hardcoded API keys, tokens, or other credentials. It uses generic placeholders like 'com.example.app' and standard local directory paths for its examples.
Audit Metadata