cco-clean
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to inspect the local file system, specifically checking disk usage and counting session files in the
~/.claude-context-optimizer/directory. - [COMMAND_EXECUTION]: The skill is designed to perform file deletions within its own local data folder as part of its cleanup and reset functionality.
- [PROMPT_INJECTION]: The skill represents a surface for indirect prompt injection as it processes user-provided
$ARGUMENTSfor file system operations. - Ingestion points: User-supplied flags and parameters passed via the
$ARGUMENTSvariable inSKILL.md. - Boundary markers: Absent; the instructions do not define delimiters or sanitization rules for the input data.
- Capability inventory: The skill utilizes the
Bashtool with the ability to delete files and directories. - Sanitization: Absent; the skill relies on the agent's interpretation of the provided arguments without explicit validation logic.
Audit Metadata