code-refactoring
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill includes instructions for running standard development commands like npm test, npx tsc, and npm run lint to validate code integrity. These are common practices in software development workflows.
- [PROMPT_INJECTION]: The skill processes external source code, creating an inherent surface for indirect prompt injection through malicious comments or code metadata.
- Ingestion points: User-provided source code files across multiple programming languages (e.g., TypeScript).
- Boundary markers: The instructions do not define specific delimiters or ignore-instructions for the input code.
- Capability inventory: Capability to modify files and execute local shell commands for testing and linting.
- Sanitization: No explicit sanitization or content validation is performed on the input code prior to processing.
Audit Metadata