legacy-migration-planner
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is designed for static analysis of project structures and generating documentation. It does not perform any direct code execution or environment modifications.
- [SAFE]: No instances of hardcoded credentials, API keys, or sensitive file path targeting (e.g., SSH keys, environment variables) were found.
- [SAFE]: The skill's instructions include robust guardrails, such as the 'Core Principles' that mandate citing codebase evidence (file:line) and asking for clarification rather than assuming the meaning of ambiguous code or business logic.
- [SAFE]: All information gathering is restricted to reading configuration files (e.g., package.json, requirements.txt) and performing web searches for technology documentation, which are standard operations for a migration planning tool.
- [SAFE]: The skill explicitly forbids writing implementation code ('MUST NOT DO: Write implementation code'), which significantly reduces the risk of malicious code generation.
- [SAFE]: No obfuscation techniques, such as Base64 encoding, zero-width characters, or homoglyph attacks, were detected in the instructions or references.
Audit Metadata