humanizer
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill documentation includes instructions for installing standard utilities like 'ripgrep', 'nodejs', and 'npm' using system package managers ('apt-get' with 'sudo' and 'brew'). These are well-known, trusted tools used for the skill's local pattern scanning and text processing functionality.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) as it processes external text data.
- Ingestion points: Text is ingested from a local file ('input.txt') or directly from user-provided passages.
- Boundary markers: Absent. There are no explicit delimiters or instructions to the LLM to ignore embedded commands within the input text.
- Capability inventory: The skill possesses the ability to read and write local files via Node.js 'fs' modules and execute subprocesses ('rg', 'sed', 'node').
- Sanitization: Absent. The skill performs regex-based replacements but does not sanitize or validate the input text for malicious instructions before processing.
Audit Metadata