code-rename
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute static analysis and code refactoring utilities such as
clj-kondo,jq,ripgrep(rg), andast-grep. These operations are standard for identifying and replacing symbol occurrences in a development environment.- [PROMPT_INJECTION]: An indirect prompt injection surface is identified as the skill processes content from a codebase that may contain untrusted data. - Ingestion points: External files are read and processed by
clj-kondo,ast-grep, andripgrep. - Boundary markers: There are no explicit boundary markers or instructions to the agent to disregard potential instructions embedded in the code comments or strings of the files being analyzed.
- Capability inventory: The skill possesses powerful capabilities including
Bashcommand execution and file modification via theEdittool. - Sanitization: The skill lacks explicit sanitization or filtering of the content read from files before it is presented to the agent's context.
Audit Metadata