ios-simulator-browser
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill executes
npx --yes serve-sim@latestinSKILL.mdto download and run the simulator mirroring tool from the NPM registry. This is a vendor-owned resource necessary for the skill's primary functionality.\n- [COMMAND_EXECUTION]: The scriptscripts/swiftui-preview-browser.mjsexecutes system binaries includingxcodebuild,xcrun, andswiftto manage iOS simulators and compile the preview host application. These commands are executed usingexecFileandspawnwhich helps prevent shell injection.\n- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it ingests and processes user-providedPackage.swiftfiles (viaswift package dump-package) and Swift source code (monitored byfs.watch) to generate and build a host application. No explicit boundary markers or delimiters are used for this ingested content. Capabilities acrossscripts/swiftui-preview-browser.mjsinclude file-system writes (writeFile), directory removal (rm), and subprocess execution (execFile). Sanitization is provided by the use ofexecFileinstead ofexec, which prevents command interpolation into a shell context.
Audit Metadata