manage-codebase-refresh
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes 'git diff' to detect modified files and uses 'test' to verify directory existence. These commands are standard for codebase management and operate only on local metadata.
- [DATA_EXFILTRATION]: Reads local source code and documentation configuration to perform updates. No network operations or external data transfers were identified.
- [PROMPT_INJECTION]: The skill processes content from modified source files to update documentation (Indirect Prompt Injection surface). Ingestion points: Local source files identified via git diff (SKILL.md). Boundary markers: Absent. Capability inventory: Read, Write, Edit, Bash, Glob, Grep. Sanitization: Absent. This surface is inherent to the task of documentation generation from code and is limited to the local environment.
Audit Metadata