janitor-check
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local bash script located at
~/.claude/skills/skills-janitor/scripts/lint.shto perform its linting operations. This involves shell interaction which, while intended, is a powerful capability. - [PROMPT_INJECTION]: The skill presents an indirect prompt injection vulnerability surface because it is designed to ingest and analyze untrusted content from other skill files. If those files contain malicious instructions, they could attempt to subvert the agent's logic during the linting process. Ingestion points: Reads
SKILL.mdfiles and associated content from other skill folders on the filesystem. Boundary markers: No delimiters or instructions are specified to prevent the agent from obeying instructions embedded within the files being checked. Capability inventory: The skill has access to shell command execution viabash. Sanitization: There is no evidence of sanitization or content validation performed on the ingested file data before processing.
Audit Metadata