Skills
skills/willsigmon/sigstack/Dead Code Eliminator/Gen Agent Trust Hub

Dead Code Eliminator

Pass

Audited by Gen Agent Trust Hub on Feb 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION] (SAFE): The skill uses bash and grep to identify and remove unused code. This behavior is consistent with its stated primary purpose of codebase cleanup.
  • [Indirect Prompt Injection] (LOW): The skill possesses an indirect prompt injection surface because it ingests untrusted data from the local codebase while maintaining destructive capabilities.
  • Ingestion points: The skill uses Read, Grep, and Glob tools to scan files within the LeavnApp/Sources/ directory.
  • Boundary markers: Absent. There are no instructions or delimiters provided to prevent the agent from following malicious instructions hidden in comments or strings within the scanned files.
  • Capability inventory: The skill has access to Edit and Bash tools, which can be used to modify or delete files and execute shell commands.
  • Sanitization: Absent. There is no evidence of sanitization or validation of the content read from the files before the agent processes or acts upon it.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 17, 2026, 06:28 PM