fix-imports
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes standard developer tools including git, grep, sed, npx, and python. These are used appropriately for file analysis and modification within the project scope.
- [DATA_EXFILTRATION] (SAFE): No network activity or access to sensitive user credentials or system configuration files was detected.
- [PROMPT_INJECTION] (SAFE): The instructions do not contain attempts to bypass safety filters, extract system prompts, or override agent programming.
- [EXTERNAL_DOWNLOADS] (SAFE): Package execution via npx (e.g., tsc, eslint) is directed at standard development tools and does not involve downloading scripts from untrusted remote sources.
- [Indirect Prompt Injection] (SAFE): Surface exists as the skill processes project source code and diagnostics. 1. Ingestion points: mcp__ide__getDiagnostics and project source files. 2. Boundary markers: Absent. 3. Capability inventory: sed, Edit tool, and npx (SKILL.md). 4. Sanitization: None.
Audit Metadata