analyze-m1-module-for-migration
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to run various shell commands (e.g.,
find,ls,tree,du) to inspect the local filesystem and directory structure of a Magento installation. These commands are necessary for the intended purpose of module analysis and do not involve unauthorized privilege escalation. - [COMMAND_EXECUTION]: The skill utilizes SQL queries (via
ddev exec mysql) to verify module usage, record counts, and data freshness within a local database. These operations are scoped to the project environment and are used to provide concrete data for migration reports. - [EXTERNAL_DOWNLOADS]: Step 5 involves research for Magento 2 alternatives on well-known platforms like GitHub and the Adobe Commerce Marketplace. These are handled as search and reference tasks without automated execution of untrusted remote code.
- [PROMPT_INJECTION]: The skill processes untrusted data from local module files (PHP, XML) and database outputs, which constitutes an indirect prompt injection surface. However, the risk is inherent to the analysis task, and the skill includes no patterns attempting to bypass agent safety filters or override core behavior.
Audit Metadata