dependency-upgrade
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches documentation and changelogs from trusted repositories on GitHub, such as Facebook's React repository, to assist with upgrade analysis.
- [COMMAND_EXECUTION]: Provides instructions for executing standard package management commands (npm, yarn, bun) and refactoring tools like
react-codeshiftto automate version migrations. - [DATA_EXFILTRATION]: No sensitive data access or exfiltration patterns to non-whitelisted domains were detected. All network operations target well-known package registries or documentation sources.
- [PROMPT_INJECTION]: The skill instructions do not contain attempts to override agent safety protocols or bypass system constraints.
- [REMOTE_CODE_EXECUTION]: Does not utilize unsafe patterns such as piping remote URLs directly into a shell or executing untrusted code strings.
Audit Metadata