iot-firmware
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill downloads the
@claude-flow/plugin-iot-cognitumpackage from the NPM registry at runtime using thenpxcommand. - [COMMAND_EXECUTION]: The skill executes shell commands to perform firmware operations such as deployment, canary advancement, and rollbacks. These commands are constrained to the
npxtool as specified in theallowed-toolsmetadata.
Audit Metadata