plan-lower-code-complexity
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill uses the
Bashtool to executebun run lintandgrep. This is standard for developer tools but constitutes local execution that relies on the integrity of the localpackage.jsonandnode_modules. - [INDIRECT_PROMPT_INJECTION] (LOW): Evidence Chain:
- Ingestion points: Reads content from
eslintconfiguration files and source code via linting output. - Boundary markers: None present; data is interpolated directly into a brief.
- Capability inventory: Uses
Bash,Read,Glob, andGrep. Side effects are limited to local analysis and plan generation. - Sanitization: No explicit sanitization of function names or file paths extracted from the code.
- Risk: A malicious actor could name a function or file in a way that attempts to influence the agent when the brief is processed by
/plan-create, though the risk is localized to the agent's reasoning process.
Audit Metadata