cmd-phoenix-convert-gettext
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill's primary purpose is automated code refactoring for internationalization. It provides specific instructions for transforming Elixir and JavaScript strings into domain-based Gettext calls. All activities are consistent with its stated purpose.
- [DATA_EXPOSURE]: The skill operates on local source code files within the user-provided
{{ web_dir }}directory. It does not attempt to access sensitive system files (e.g., SSH keys, cloud credentials) or exfiltrate data to external servers. - [COMMAND_EXECUTION]: The skill does not contain any shell commands, subprocess executions, or scripts. It uses instructions to guide the agent's refactoring logic without invoking dangerous system-level operations.
- [INDIRECT_PROMPT_INJECTION]: The skill possesses a data ingestion surface as it reads existing source code files which could theoretically contain malicious instructions (e.g., in code comments). However, the specific nature of the refactoring task and the lack of broad capabilities like network access mitigate this risk.
Audit Metadata