ast-grep
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill acts as a documentation suite for the
ast-greputility. It explains how to perform code searches, rewrites, and linting using Abstract Syntax Trees (AST). - [COMMAND_EXECUTION]: The skill describes the use of CLI commands such as
ast-grep run,ast-grep scan, andast-grep test. These commands are standard for the tool's intended purpose of local code analysis and modification. - [PROMPT_INJECTION]: No behavioral overrides, safety bypasses, or system prompt extraction patterns were detected in the skill or its references.
- [DATA_EXFILTRATION]: No network operations, hardcoded credentials, or access requests for sensitive files (e.g., SSH keys, environment variables) were identified. The skill instructions pertain solely to local code processing.
- [REMOTE_CODE_EXECUTION]: The skill does not download or execute scripts from remote sources. It describes the operation of the
ast-greptool which is assumed to be available in the local execution environment.
Audit Metadata