Skills
skills/s-hiraoku/vscode-sidebar-terminal/sync-plugin-skills/Gen Agent Trust Hub

sync-plugin-skills

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill acts as a documentation maintenance tool. It identifies inconsistencies between the implementation code (in the synapse/ directory) and the existing documentation (README.md, guides, and plugin skill files).
  • [DATA_EXPOSURE]: The skill reads local project files, including source code and configuration documentation, to perform its synchronization task. This behavior is restricted to the local repository and is necessary for its stated purpose.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes content from local documentation files (README.md, guides). While this represents a data ingestion surface, the risk is categorized as safe given the context of a local developer maintenance tool acting on internal project files.
  • [NO_CODE]: No external scripts, binary executables, or third-party packages are downloaded or executed by this skill.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 07:33 AM