batch-lint-cleanup
Warn
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: MEDIUMCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to construct and execute shell commands using a user-supplied variable (
rule-name). Specifically, the instructionnx run-many -t lint:eslint -- --rule "<rule-name>: error" --fixinterpolates user input into a shell command, which is a classic injection vector if the agent does not sanitize the input. - [COMMAND_EXECUTION]: The skill performs significant repository modifications using
git add -Aandgit commit. While intended for its core purpose of lint fixing, this provides the agent with high-privilege access to the project's source control.
Audit Metadata