reviewing-lwc-mobile-offline
Pass
Audited by Gen Agent Trust Hub on Jun 19, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The "scripts/run-komaci.sh" shell script performs an "npm install" during its initial execution to install necessary dependencies. It fetches the "eslint" package and the "@salesforce/eslint-plugin-lwc-graph-analyzer" plugin from the public npm registry.
- [COMMAND_EXECUTION]: The skill invokes a local shell script, "scripts/run-komaci.sh", to run the Komaci static analyzer. The script processes component source files using the ESLint CLI. The implementation uses shell variable quoting to mitigate common command injection risks.
Audit Metadata