The Agent Skills Directory

SAFE (SAFE): Analysis of the provided shell scripts and logic confirms that the skill performs legitimate documentation tasks. It uses find, grep, and sed to locate and parse source code for endpoint definitions. No indicators of data exfiltration, credential theft, or remote code execution were found.\n- Capability Access (SAFE): The requested tools (Bash, Edit, Write, and GitHub access) are commensurate with the skill's primary function of auditing code and updating documentation repositories.\n- Indirect Prompt Injection (SAFE): Although the skill processes untrusted codebase content, the core extraction logic is implemented via deterministic regular expressions rather than natural language reasoning, which effectively mitigates the risk of instructions within code comments influencing the agent's behavior during the discovery phase.

documentation-audit