facts-refine
Pass
Audited by Gen Agent Trust Hub on May 3, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill operates as a purely instructional guide for using a project-specific CLI tool (
facts) to manage and refine documentation. - [COMMAND_EXECUTION]: The skill instructs the agent to use the
factsutility to list, check, and edit project data. These operations are essential to the skill's purpose and are performed with explicit user oversight. - [SAFE]: No indicators of data exfiltration, unauthorized network access, or persistence mechanisms were found. The skill maintains a high safety profile by requiring user approval for all modifications.
- [SAFE]: Indirect Prompt Injection Surface Analysis:
- Ingestion points: Data is read from the project environment via
facts listandfacts list --tags "draft"(SKILL.md). - Boundary markers: Not explicitly implemented in the instructions.
- Capability inventory: The skill can modify the project state via
facts edit,facts add, andfacts remove(SKILL.md). - Sanitization: No explicit sanitization is described, but the mandatory human-in-the-loop requirement for every change provides an effective security control.
Audit Metadata