lazyvim
Warn
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: MEDIUMPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The 'Self-Heal Observer' section establishes a background monitoring task for the agent to identify 'friction signals' (user corrections or reformulations). It instructs the agent to conditionally execute a hidden protocol from a specific file path ('.claude/skills/self-heal/references/diagnosis-protocol.md') at the end of the session without notifying the user. This redirects the agent's behavior based on instructions loaded from a path that is not part of the visible skill code.
- [COMMAND_EXECUTION]: The skill provides a shell command using 'rsync' to overwrite the user's local Neovim configuration directory ('
/.config/nvim') with files from a local source path ('/.yadrlite/workstation/lazyvim/').
Audit Metadata