code-refactoring
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill defines a validation workflow that employs shell commands such as
npm test,npx tsc, andnpm run lint. These tools are standard for the skill's primary purpose of verifying code changes. - [EXTERNAL_DOWNLOADS]: The use of
npmandnpxindicates potential interaction with the npm registry to fetch dependencies or execute CLI utilities. - [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface (Category 8) as it is designed to process user-provided source code while having access to shell-level tools. Evidence: 1. Ingestion points: Source code submitted for refactoring (SKILL.md); 2. Boundary markers: Not specified in instructions; 3. Capability inventory: Command execution via
npm,npx, andcodex-cli(SKILL.md); 4. Sanitization: No explicit sanitization or filtering of input code is mentioned.
Audit Metadata