check-docs
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill uses standard system utilities like grep, find, and stat to perform documentation audits. No arbitrary command execution or shell injection vectors are present.
- [DATA_EXPOSURE] (SAFE): The script scans source code for environment variable names to verify documentation coverage but does not access sensitive .env files or exfiltrate data.
- [INDIRECT_PROMPT_INJECTION] (LOW): The skill ingests untrusted data from READMEs and source files. Evidence: 1. Ingestion points: README.md, docs/, src/. 2. Boundary markers: None. 3. Capability inventory: grep, stat, find. 4. Sanitization: None. This is low risk as it only performs pattern matching and does not execute the file content.
- [EXTERNAL_DOWNLOADS] (SAFE): No remote code execution or external downloads detected. The tool checks for the local presence of 'lychee' but does not install it.
Audit Metadata