cordova-plugin-migrator
Pass
Audited by Gen Agent Trust Hub on Jun 12, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to use standard system and version control utilities (mkdir, git mv, rsync, rm, plutil) to manage file migration, directory restructuring, and project archiving. These operations are limited to the local project environment and are necessary for the skill's primary function.
- [EXTERNAL_DOWNLOADS]: The skill manages and suggests dependencies from well-known, trusted registries including npm, CocoaPods, and Maven. It includes specific logic to detect abandoned, unverified, or proprietary dependencies, surfacing them as blockers or warnings rather than silently installing them.
- [SAFE]: The skill does not contain any evidence of obfuscation, credential exfiltration, or persistence mechanisms. It demonstrates a security-aware design by providing structured handoffs to downstream skills and implementing human-in-the-loop checkpoints for critical decisions.
Audit Metadata