sparkscan-cordova
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate developer tool for Scandit SDK integration. All instructions are consistent with its stated purpose of aiding Cordova developers in barcode scanning workflows.
- [SAFE]: No hardcoded credentials or sensitive data access patterns were found. The skill correctly uses placeholders for license keys and instructs users on standard plugin installation procedures.
- [SAFE]: All referenced external resources, including documentation links (docs.scandit.com) and sample code (github.com/Scandit), originate from the official vendor infrastructure. No third-party or unverified downloads were detected.
- [PROMPT_INJECTION]: A static hint suggested concealment behavior, but analysis of the instructions shows the skill actually promotes transparency by requiring the agent to provide documentation links alongside its answers. The instruction to edit files directly is a standard capability for development-oriented agents and not a security threat in this context.
Audit Metadata