refactor
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The README.md file contains instructions for running pnpm install to build and validate the skill. As the project's package.json is not included in the provided files, the specific external dependencies cannot be verified. This is an unverified external download surface.
- PROMPT_INJECTION (LOW): The skill functions by ingesting and transforming untrusted source code provided by users, which is a vector for indirect prompt injection. Ingestion points: Code input provided to the agent for refactoring. Boundary markers: Absent. The skill does not define specific delimiters or instructions for the agent to ignore embedded commands in input data. Capability inventory: The skill is primarily instructional and does not demonstrate direct execution of the code it refactors. Sanitization: Absent. The documentation does not specify methods for sanitizing or escaping the untrusted code snippets before processing.
Audit Metadata