skills/adobe/skills/replica/Gen Agent Trust Hub

replica

Pass

Audited by Gen Agent Trust Hub on Jul 7, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: During setup, the skill uses the npm package manager to install development libraries including playwright, pixelmatch, and pngjs. It also accesses user-specified URLs to capture screenshots and extract stylesheets as part of the site migration workflow.
  • [COMMAND_EXECUTION]: The skill executes several local commands to perform its core functions. It uses Node.js to run image comparison and browser automation scripts, and it leverages python3 to serve temporary prototype files on a local port for validation purposes.
  • [DYNAMIC_EXECUTION]: The stitch-shot.mjs script uses dynamic imports to load utility modules from sibling directories. This is used to share logic for browser session management and bot-detection bypasses with related migration tools in the stardust suite, and it operates on locally resolved file paths.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 7, 2026, 09:02 PM
Security Audit — agent-trust-hub — replica