nextjs-upgrade-assistant

Pass

Audited by Gen Agent Trust Hub on Jun 14, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill serves a legitimate purpose of guiding users through a software migration process. It provides clear, actionable steps and explains the rationale behind changes.
  • [COMMAND_EXECUTION]: The commands provided, such as npm install, rm -rf .next, and git reset, are standard utilities used in modern web development to manage dependencies, clear local caches, and handle version control. None of the commands attempt to access sensitive files or perform unauthorized system modifications.
  • [EXTERNAL_DOWNLOADS]: All external references and dependencies, including the Next.js framework, React libraries, and Tailwind CSS, are official packages from reputable sources within the JavaScript community.
  • [REMOTE_CODE_EXECUTION]: The use of npx @next/codemod is a standard practice for applying automated code transformations during Next.js upgrades. The source is the official @next namespace on npm, managed by Vercel.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 14, 2026, 06:40 AM
Security Audit — agent-trust-hub — nextjs-upgrade-assistant