repo-maintenance
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- COMMAND_EXECUTION (SAFE): The skill executes local Python scripts (
audit_repo.py,sync_docs.py) located within its own directory structure to perform auditing and synchronization. This is expected behavior for a maintenance utility and does not involve elevated privileges. - PROMPT_INJECTION (SAFE): No injection patterns or attempts to bypass AI safety constraints were identified. The instructions focus exclusively on repository integrity and adherence to specified documentation standards.
- DATA_EXFILTRATION (SAFE): There is no evidence of network requests or access to sensitive local directories (such as SSH keys or AWS credentials). The skill processes local repository files for validation purposes only.
- REMOTE_CODE_EXECUTION (SAFE): The skill does not perform remote downloads or execute code from untrusted external sources. All execution is limited to pre-defined local scripts.
- INDIRECT_PROMPT_INJECTION (SAFE): While the skill ingests data from repository files (Ingestion point: audit_repo.py), it requires strict XML tagging for structure and mandates human approval through the question tool before acting on any findings (Sanitization: HITL workflow), effectively mitigating risks of malicious content in the processed files.
Audit Metadata