wp-bump
Pass
Audited by Gen Agent Trust Hub on May 10, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes local development tools including
git,npm, andcomposer. It is designed to run version updates and project-specific scripts such asnpm run build,npm test, andcomposer run test. These actions are typical for build automation and occur within the local project context. - [DATA_EXPOSURE_AND_EXFILTRATION]: The skill accesses project-specific files such as
package.json,readme.txt, and PHP files, as well as repository history viagit log, to extract and update version information. These operations are limited to the local project environment and do not involve access to sensitive system credentials or external network communication.
Audit Metadata