Skills
skills/agentskillexchange/skills/ESLint Rule Conflict Detector/Gen Agent Trust Hub

ESLint Rule Conflict Detector

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: Indirect prompt injection surface detected through the ingestion of user-controlled configuration files.
  • Ingestion points: Reads and analyzes .eslintrc and eslint.config.js files (SKILL.md).
  • Boundary markers: No explicit boundary markers or instructions to ignore embedded instructions are present in the skill definition.
  • Capability inventory: Utilizes the ESLint Node.js API which interacts with the file system and executes code (SKILL.md).
  • Sanitization: No input validation or sanitization of configuration contents is specified.
  • [COMMAND_EXECUTION]: The skill performs dynamic execution by using the ESLint Node.js API to load and resolve configurations. This process involves executing JavaScript-based configuration files found in the user's project directory (e.g., .eslintrc.js or eslint.config.js). This is standard functionality for ESLint but represents runtime code execution.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 06:43 PM