kb-remove
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides administrative functionality for maintaining a local knowledge base. It handles file deletions and text updates in CLAUDE.md and related index files. All destructive actions are preceded by a confirmation prompt using the AskUserQuestion tool.
- [PROMPT_INJECTION]: The skill identifies cross-references by parsing the content of knowledge base files and the CLAUDE.md table. This represents an indirect prompt injection surface as the agent processes untrusted file content. However, the logic is limited to specific text removal and metadata updates, and the manual confirmation step mitigates the risk of malicious file content triggering unintended deletions. • Ingestion points: CLAUDE.md and markdown files in docs/kb/. • Boundary markers: Absent. • Capability inventory: File system deletion and file write access. • Sanitization: Absent.
Audit Metadata