Skills
skills/webmaxru/enonic-agent-skills/enonic-content-migration/Gen Agent Trust Hub

enonic-content-migration

Pass

Audited by Gen Agent Trust Hub on May 4, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructions in SKILL.md direct the agent to execute a local script node scripts/find-enonic-targets.mjs . during the project discovery phase.
  • Evidence: Found in SKILL.md under Step 1: 'Execute node scripts/find-enonic-targets.mjs . to scan for Enonic XP project markers'.
  • Analysis: This script is a utility provided within the skill package that scans the local filesystem for Enonic XP project markers (like build.gradle) and existing content scripts. It performs read-only operations on the workspace and does not initiate network connections or modify system settings. This is a standard project discovery pattern.
  • [DATA_EXPOSURE]: The provided discovery script reads configuration and source files within the user's workspace to identify the environment.
  • Evidence: scripts/find-enonic-targets.mjs uses readFile and readdir to inspect files such as build.gradle and gradle.properties up to a directory depth of 5.
  • Analysis: The data access is scoped to the local workspace and is strictly used to determine the Enonic XP version and application name to guide the agent in generating compatible code. No data is sent to external servers.
Audit Metadata
Risk Level
SAFE
Analyzed
May 4, 2026, 08:31 AM
Security Audit — agent-trust-hub — enonic-content-migration