version-check

Pass

Audited by Gen Agent Trust Hub on Jun 29, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: Executes diagnostic commands such as claude --version and npm view to retrieve information about the currently installed and available versions of the tool.
  • [COMMAND_EXECUTION]: Uses docker exec to run GitHub API queries via the gh CLI inside a specified container environment to analyze recent bug reports.
  • [EXTERNAL_DOWNLOADS]: Fetches the project's official CHANGELOG.md from Anthropic's GitHub repository to identify fixed regressions.
  • [EXTERNAL_DOWNLOADS]: Accesses the npm registry to retrieve distribution tags and release history for the @anthropic-ai/claude-code package.
  • [PROMPT_INJECTION]: The skill processes untrusted external data from GitHub issues and Reddit threads to evaluate community sentiment.
  • Ingestion points: GitHub Search API and Reddit JSON feeds.
  • Boundary markers: None explicitly implemented in the provided shell snippets.
  • Capability inventory: Includes shell execution and package installation capabilities.
  • Sanitization: Relies on the agent's internal reasoning to interpret the retrieved text and community sentiment.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 29, 2026, 08:10 AM
Security Audit — agent-trust-hub — version-check