smart-mutation-operator-generator
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: Static Analysis Security: The skill includes a Python script
scripts/generate_operators.pythat uses the standardastmodule to analyze source code. This approach ensures that the code being analyzed is never executed, preventing any potential runtime attacks from malicious code. - [SAFE]: No Network Activity: There are no network operations, such as calls to
requests,urllib, or external shell commands likecurlorwget. The analysis is entirely local to the user-provided directory. - [SAFE]: Absence of Malicious Patterns: No evidence of prompt injection, obfuscation, or persistence mechanisms was found in the metadata or the implementation logic.
- [SAFE]: Indirect Prompt Injection Surface: While the skill parses external code files, it treats the content as data for AST construction. It lacks the capabilities (e.g.,
eval,exec, orsubprocess) that would be necessary to exploit such a surface. Ingestion points:scripts/generate_operators.py. Sanitization:ast.parse. Boundary markers: None. Capability inventory: None.
Audit Metadata