eng-ai-slop-remover
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill demonstrates an indirect prompt injection surface by ingesting and processing untrusted data (source code files) with the capability to perform file modifications.
- Ingestion points: The workflow involves viewing and analyzing files identified via
git diff main --name-only(Step 1). - Boundary markers: There are no explicit delimiters or system instructions to ignore embedded commands within the files being processed.
- Capability inventory: The skill possesses file-read and file-edit capabilities (Step 3) and executes shell commands (
git diff). - Sanitization: No sanitization, escaping, or validation of the file content is performed before the agent interprets the patterns and makes edits.
Audit Metadata