barcode-capture-web
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes user-provided codebase files (e.g., package.json, TypeScript files) to perform migrations or integrations.
- Ingestion points: Reads existing application code and dependency manifests from the user's project environment.
- Boundary markers: Absent. The skill does not explicitly instruct the agent to use delimiters or ignore instructions potentially embedded in the user's code.
- Capability inventory: The skill has the capability to write integration code, modify existing files, and recommend package installations.
- Sanitization: Absent. The skill provides direct code transformations without explicit validation of the input code's content.
- [EXTERNAL_DOWNLOADS]: The skill references several external resources, all of which are hosted on official or trusted platforms.
- Fetches SDK engine files from JSDelivr CDN (cdn.jsdelivr.net).
- References official documentation and license management on scandit.com.
- Points to official code samples on the Scandit organization's GitHub repository.
Audit Metadata