contentstack-js-to-ts-migration
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [SAFE]: No malicious patterns or executable code detected. The skill functions as a static knowledge base for code migration and provides text-based guidance only.
- [EXTERNAL_DOWNLOADS]: The skill references official Node.js packages from Contentstack (such as
@contentstack/delivery-sdk,@contentstack/utils, and@contentstack/persistance-plugin) as part of the setup instructions for the user. These are verified vendor resources and do not represent a security risk. - [SAFE]: Analysis of indirect prompt injection surface: 1) Ingestion points: the skill processes user-provided JavaScript code snippets for migration. 2) Boundary markers: no specific delimiters are defined in the instructions. 3) Capability inventory: the skill has no dangerous capabilities (no file system access, no network access, no shell execution). 4) Sanitization: none specified. Because the skill cannot execute code or access external systems, the risk of injection is neutralized.
Audit Metadata