refactoring
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns such as code obfuscation, hardcoded credentials, or remote code execution were detected. The skill includes specific instructions to escalate security-sensitive refactoring to specialized roles.\n- [COMMAND_EXECUTION]: The skill uses local tools like ripgrep and Bash to search for code smells and execute tests, which are standard and necessary actions for the stated refactoring purpose.\n- [PROMPT_INJECTION]: Indirect surface analysis: (1) Ingestion points: Reads local repository files via Read, Grep, and Glob tools. (2) Boundary markers: No explicit instructions to ignore embedded commands in source data. (3) Capability inventory: Executes code via Bash (tests) and modifies files via Write and Edit. (4) Sanitization: No validation of ingested code content. This surface is evaluated as safe given the skill's specific development context.
Audit Metadata