update-npm-deps
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Executes various shell commands to identify project structure and manage dependencies. This includes find to locate package.json files, ncu (npm-check-updates) to discover available updates, and npm to install packages and run tests, builds, and linters. It also executes migration codemods via npx.
- [EXTERNAL_DOWNLOADS]: Fetches and installs external packages and tools from the npm registry, a well-known service. This includes the ncu utility and several framework-specific codemod packages from trusted organizations like Meta (React, Jest) and Vercel (Next.js).
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface (Category 8) due to its processing of untrusted external content.
- Ingestion points: Processes data from WebSearch results, including migration guides and changelogs, in Phase 4.
- Boundary markers: Does not utilize explicit boundary markers or instructions to ignore commands within the fetched migration documentation.
- Capability inventory: The skill has the capability to execute shell commands (npm, npx) and modify local project files using the Edit tool.
- Sanitization: There is no evidence of filtering or sanitizing the content retrieved from web searches before it is presented to the agent or user for action.
Audit Metadata