frontend-refactor
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill is designed to process external data (source code) and has the capability to modify files and execute shell commands.
- Ingestion points: Processes local files using Read, Glob, and Grep tools.
- Boundary markers: None present; the skill does not define specific delimiters to separate code content from instructions.
- Capability inventory: Write, Edit, and Bash tools allow for file modification and command execution across the system.
- Sanitization: No sanitization or validation of the input code is specified.
- [Command Execution] (SAFE): The skill requests access to the Bash tool. While this is a high-privilege tool, no specific malicious commands are present in the skill definition; the tool is consistent with the stated purpose of refactoring and potential build/lint testing.
- [Prompt Injection] (SAFE): No instructions were found that attempt to bypass AI safety guardrails or override system prompts.
Audit Metadata