Name: gstack-upgrade
Rating: 17 (1 reviews)
Author: garrytan

gstack-upgrade

Upgrade gstack to the latest version. Detects global vs vendored install, runs the upgrade, and shows what's new. Use when asked to "upgrade gstack", "update gstack", or "get latest version". Voice triggers (speech-to-text aliases): "upgrade the tools", "update the tools", "gee stack upgrade", "g stack upgrade".

Invalid

This skill can't be scored yet

Validation errors are blocking scoring. Review and fix them to unlock Quality, Impact and Security scores. See what needs fixing →

2 findings — 2 medium severity. This skill can be installed but you should review these findings before use.

Medium

W011: Third-party content exposure detected (indirect prompt injection risk)

What this means

The skill exposes the agent to untrusted, user-generated content from public third-party sources, creating a risk of indirect prompt injection. This includes browsing arbitrary URLs, reading social media posts or forum comments, and analyzing content from unknown websites.

Why it was flagged

Third-party content exposure detected (high risk: 0.90). The skill explicitly clones the gstack repository from the public web (git clone https://github.com/garrytan/gstack.git in the vendored-upgrade flow) and then runs ./setup, executes migration scripts from the checked-out INSTALL_DIR and reads INSTALL_DIR/CHANGELOG.md, so external repository contents (untrusted third‑party data/scripts) are ingested and can directly alter execution and subsequent actions.

Report incorrect finding

Medium

W012: Unverifiable external dependency detected (runtime URL that controls agent)

What this means

The skill fetches instructions or code from an external URL at runtime, and the fetched content directly controls the agent’s prompts or executes code. This dynamic dependency allows the external source to modify the agent’s behavior without any changes to the skill itself.

Why it was flagged

Potentially malicious external URL detected (high risk: 1.00). The skill's vendored-upgrade path performs a runtime git clone of https://github.com/garrytan/gstack.git and then runs ./setup from the fetched tree, which fetches remote code during runtime and executes it, meeting the criteria for a high-risk external dependency.

Report incorrect finding

Repository: garrytan/gstack
Commit: 7b4738b

Audited: 2 days ago
Security analysis

Is this your skill?

If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.