enonic-nextxp-integration
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes a local utility script
scripts/find-nextxp-targets.mjsto automate the discovery of the integration surface. - Detailed analysis of the script confirms it is limited to filesystem read operations (
readdir,readFile,stat) to identify project structure, environment files, and component mappings. - The script does not perform network operations, file modifications, or credential harvesting.
- [EXTERNAL_DOWNLOADS]: The skill references and installs official software components from the Enonic ecosystem.
- References the
@enonic/nextjs-adapterpackage from the npm registry. - Uses
npx degitto fetch theenonic/nextxp-templatefrom GitHub. - These resources originate from well-known and official repositories associated with the Enonic platform.
- [SAFE]: The skill follows security best practices for credential management by instructing users to store sensitive tokens like
ENONIC_API_TOKENin local environment files (.env). No attempts to exfiltrate these secrets or hardcode credentials were found.
Audit Metadata