refactor
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the
greputility to scan the local filesystem for specific library imports and animation patterns within source code files. - [INDIRECT_PROMPT_INJECTION]: The skill ingests and analyzes untrusted source code from the user's project, creating a surface where malicious instructions embedded in comments or code could attempt to influence agent behavior.
- Ingestion points: The agent reads the contents of all
.ts,.tsx,.js, and.jsxfiles discovered during the discovery phase. - Boundary markers: No specific delimiters or "ignore instructions" markers are used when the agent processes the discovered code snippets.
- Capability inventory: The skill possesses the capability to execute shell commands (
grep) and modify local project files to apply refactoring changes. - Sanitization: There is no evidence of sanitization or safety-filtering applied to the code read from the filesystem before it is processed by the agent's logic.
Audit Metadata