Skills
skills/jeremylongshore/claude-code-plugins-plus-skills/code-formatter/Gen Agent Trust Hub

code-formatter

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses npm install and npx prettier to manage tools and execute formatting tasks. These commands are typical for the skill's stated purpose of maintaining code style.
  • [EXTERNAL_DOWNLOADS]: Installs well-known packages such as Prettier, ESLint, Husky, and Lint-Staged from the official npm registry. These are trusted development tools and their use is documented neutrally.
  • [DATA_EXPOSURE]: Employs the find command to locate project-specific configuration files like .prettierrc or prettier.config.js. This search is confined to the project directory and does not target sensitive system locations.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted local data by reading source files to apply formatting. While it lacks explicit boundary markers for the agent, it operates as a structural utility rather than an open-ended processor of instructions.
  • [COMMAND_EXECUTION]: Includes instructions for adjusting file permissions with chmod u+w to resolve write errors, which is a standard procedure for file-writing tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 04:01 PM