plugin-creator
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- Command Execution: The skill initiates a local Python script to automate the plugin scaffolding process. While this involves executing shell commands, the behavior is consistent with the skill's intended purpose of setting up developer environments.
- File System Management: The associated script creates directories and writes JSON manifests (like
plugin.jsonandmarketplace.json) to the local file system. It utilizes input normalization and path validation to ensure these operations are performed correctly and within expected locations. - Placeholder Configuration: The generated JSON files use template placeholders for sensitive or specific configuration values. This approach ensures that no actual credentials or private data are hardcoded or exposed during the initial scaffolding phase.
Audit Metadata