deslop
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs local code cleanup using standard development tools like git and ripgrep. It does not perform network operations or access sensitive system files.
- [COMMAND_EXECUTION]: Executes shell commands via Bash for repository inspection (git diff), searching (rg), and project validation (bun check, bun typecheck). These are standard operations for a code maintenance tool.
- [PROMPT_INJECTION]: The skill processes untrusted data in the form of code diffs, which presents a surface for indirect prompt injection. However, the skill provides explicit safety guardrails that instruct the agent to preserve protections at trust boundaries and maintain type safety, effectively mitigating the risk of accidental removal of security logic.
Audit Metadata