de-ai-polish
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses a local Python script
scripts/fix_punctuation.pyto automate the correction of punctuation in processed articles. This is a documented part of the text polishing workflow and performs standard regex-based replacements.- [DATA_EXFILTRATION]: No unauthorized network operations or sensitive file access patterns were found. URLs in the documentation point to the author's official GitHub repositories and legitimate vendor resources.- [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted user-provided articles, creating a surface for potential instruction injection. Evidence Chain: - Ingestion points: User-provided markdown files processed via slash commands (e.g.,
@article.md). - Boundary markers: Absent in the instructions.
- Capability inventory: Local file modification via the punctuation script and text rewriting capabilities.
- Sanitization: Absent, relying on the agent's default safety guardrails.
Audit Metadata