rsc-data-optimizer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE] (SAFE): No malicious patterns or security risks were detected in the documentation.
- [NO_CODE] (SAFE): The skill contains only markdown files and code snippets, without any executable logic or scripts.
- [COMMAND_EXECUTION] (LOW): Suggests using the
rg(ripgrep) command for local code searching, which is a standard and safe developer practice. - [Indirect Prompt Injection] (SAFE): A vulnerability surface exists because the agent is instructed to analyze user code. Evidence Chain: 1. Ingestion points: The agent scans the user's codebase in the
app/directory. 2. Boundary markers: Absent. 3. Capability inventory: Searching files, reading code, and proposing architectural changes. 4. Sanitization: Absent. The skill is instructional and does not present an exploitable path.
Audit Metadata