deslop-simplify-ai-code
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The instructions are focused on code style and refactoring without any attempts to subvert the agent's core instructions.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths or network-based exfiltration patterns were identified. Git operations are restricted to diffing.
- Remote Code Execution (SAFE): No remote scripts, package managers, or dynamic execution functions (e.g., eval, exec) are used.
- Indirect Prompt Injection (LOW): The skill ingests untrusted code via 'git diff'. While this surface exists, the instructions guide the model to remove or simplify code elements rather than treating the code content as a source of executable instructions.
- Ingestion points: git diff output (SKILL.md)
- Boundary markers: None specified
- Capability inventory: git diff (SKILL.md)
- Sanitization: None specified
Audit Metadata