vale
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill instructs the agent to run the
valecommand-line tool. This is the primary function of the skill and is used as intended for prose linting.\n- PROMPT_INJECTION (SAFE): The skill processes the content of local text files, creating a surface for indirect prompt injection. Since this is the primary purpose of a linter and the output consists of stylistic suggestions, the risk is minimal.\n - Ingestion points: Local markdown and text files.\n
- Boundary markers: None specified in the instructions.\n
- Capability inventory: Shell command execution (vale), file system reading, and file system writing.\n
- Sanitization: No explicit sanitization or filtering of file content is provided.
Audit Metadata