Skills
skills/cbnsndwch/skills/vite-8-upgrade/Gen Agent Trust Hub

vite-8-upgrade

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill content is restricted to technical instructions for migrating software projects to Vite 8.
  • [EXTERNAL_DOWNLOADS]: The skill refers to official and well-known documentation for Vite (vite.dev), Rolldown (rolldown.rs), and Oxc (oxc.rs). These are recognized as trusted resources for the migration task.
  • [COMMAND_EXECUTION]: The skill recommends executing standard development and maintenance commands such as npm install, vite dev, and vite build. These actions are necessary for the stated purpose of the skill.
  • [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it reads local project files (discovery in Phase 0). 1. Ingestion points: local workspace files scanned in Step 1 of Phase 0. 2. Boundary markers: Absent. 3. Capability inventory: file-write operations (Phase 2) and shell command execution (Phase 1/3). 4. Sanitization: Absent. However, this surface is inherent to the primary purpose of a migration tool and does not indicate malicious intent.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 04:09 PM
Security Audit — agent-trust-hub — vite-8-upgrade