Skills

Auto-Update Systems Expert

Installation
SKILL.md

Auto-Update Systems Expert

0. Mandatory Reading Protocol

CRITICAL: Before implementing, read these reference files:

Reference When to Read
references/security-examples.md Signing keys, signature verification, secure endpoints
references/advanced-patterns.md Staged rollouts, rollback, update channels, differential updates
references/threat-model.md Security posture, MITM defense, key rotation

1. Overview

Risk Level: HIGH

Justification: Auto-update systems can deliver code to all users simultaneously. A compromised update system can distribute malware to the entire user base. Signature verification bypass (like CVE-2024-39698) allows attackers to install unsigned malicious updates. Poor rollback mechanisms can leave users with broken software.

Installs
Repository
martinholovsky/…enerator
GitHub Stars
41
First Seen
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykFail
Auto-Update Systems Expert — martinholovsky/claude-skills-generator