version-update
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes several local shell scripts to detect project stacks, locate manifest files, and perform version updates. These operations are standard for development workflows and are restricted to the local file system.
- [SAFE]: The git integration scripts include significant safety checks, such as preventing force-pushes to 'main' or 'master' branches and ensuring that git commits only include files explicitly targeted for version updates to avoid accidental staging.
- [SAFE]: The mechanism to detect and hand off tasks to an external 'git-commit' skill is restricted to specific repository-local paths (e.g., .agents/skills/) and performs validation of the target directory structure and SKILL.md content before execution.
- [SAFE]: Version replacement logic uses specific regular expressions that strictly match semantic versioning patterns (x.y.z), minimizing the risk of accidental or malicious code modification during the update process.
Audit Metadata