humanize-beagle
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill incorporates robust safety measures for automated file editing, including stashing uncommitted changes before processing (Step 2) and validating file integrity using syntax parsers (Step 8).
- [SAFE]: The skill possesses a surface for indirect prompt injection due to its ingestion of external files and review data, but it mitigates this risk through a combination of automated validation and human-in-the-loop review.
- Ingestion points: Reads .beagle/ai-writing-review.json and user-specified project files (SKILL.md, Steps 3, 6, and 7).
- Boundary markers: Not explicitly defined for the text rewriting process.
- Capability inventory: Includes local file modification, git repository operations, and syntax validation commands (SKILL.md, Steps 6 and 8).
- Sanitization: Employs Python's 'ast' module and the 'acorn' JavaScript parser to verify file validity after edits, reverting changes if errors are detected (Step 8).
- [COMMAND_EXECUTION]: Local shell commands such as git, jq, python3, and npx are utilized strictly for legitimate developer tasks like project status checks, JSON parsing, and code validation.
- [EXTERNAL_DOWNLOADS]: The skill uses 'npx' to execute the 'acorn' utility for JavaScript syntax checking, which involves downloading a well-known and trusted package from the official npm registry.
Audit Metadata