refresh-agent-context
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local Node.js script (
scripts/workspace_inventory.mjs) to audit the monorepo structure. This script relies exclusively on built-in Node.js modules (fs,path) and does not invoke external shell commands or execute untrusted inputs. - [SAFE]: File access is restricted to reading standard project configuration files and checking for the existence of documentation files within the workspace. No access to sensitive directories (e.g., .ssh, .aws) or environment files was found.
- [SAFE]: There are no network operations, remote code downloads, or third-party dependencies associated with the skill.
- [SAFE]: The workflow involves local documentation updates based on the inventory results, which is a routine and expected behavior for this type of maintenance tool.
Audit Metadata