styling-system
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOW
Full Analysis
- COMMAND_EXECUTION (SAFE): The script uses standard shell commands (
grep,wc,printf,set) to analyze files. It follows security best practices by using--in grep commands to prevent malicious file paths from being interpreted as command flags. - DATA_EXFILTRATION (SAFE): No network operations or commands capable of transmitting data externally (e.g., curl, wget, fetch) are present in the script.
- REMOTE_CODE_EXECUTION (SAFE): The script does not download or execute code from remote sources. It only processes local files within the provided directory path.
- INDIRECT_PROMPT_INJECTION (LOW): The script reads content from the project's source code files. While this is an ingestion point for untrusted data, the script only performs pattern matching and counting for reporting purposes. It does not execute or evaluate the content of the files it scans, limiting the risk of injection to misleading report outputs.
Audit Metadata