code-stats
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No malicious code or patterns were detected. The skill serves as a reference for running reputable CLI tools for line counting and diffing.
- [Indirect Prompt Injection] (LOW): The skill has an ingestion surface as it reads and processes local codebase files.
- Ingestion points: Local filesystem files processed by
tokeianddifft. - Boundary markers: None; output is presented to the agent as standard tool output (tables or diffs).
- Capability inventory: Local bash execution to run
tokei,difft, andgit. - Sanitization: None; the tools themselves handle the file parsing, and the agent receives the resulting statistics or structural diffs.
Audit Metadata