Skills
NYC
skills/bahayonghang/my-claude-code-settings/lsp-manager/Gen Agent Trust Hub

lsp-manager

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFE
Full Analysis
  • COMMAND_EXECUTION (SAFE): The scripts/check_server.sh script executes a hardcoded list of common language server binaries (e.g., gopls, pyright-langserver) with the --version flag. This is a standard diagnostic check to verify software installation and does not involve untrusted input.
  • DATA_EXFILTRATION (SAFE): The skill does not perform any network requests or access sensitive user files such as credentials, tokens, or SSH keys. Data processing is limited to counting file extensions in the current project directory.
  • PROMPT_INJECTION (SAFE): The documentation and instructions in SKILL.md are focused on technical configuration tasks. There are no attempts to override agent safety guidelines, bypass instructions, or extract system prompts.
  • INDIRECT_PROMPT_INJECTION (SAFE): The scripts/detect_language.py script crawls the project directory but only processes file extensions for statistical purposes. It does not read file content or integrate untrusted text into the agent's prompt context, minimizing the risk of instruction hijacking through project files.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:38 PM