open-source-prep
Pass
Audited by Gen Agent Trust Hub on Apr 19, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Uses local shell commands including git, grep, and xargs to audit project history and workspace files for sensitive data exposure.
- [EXTERNAL_DOWNLOADS]: Downloads license templates from the official Apache website and via the GitHub API, which are well-known and trusted sources.
- [PROMPT_INJECTION]: Processes untrusted project data such as source code and git history during secret scanning without using explicit boundary markers. The skill has capabilities to run shell commands and modify files, but it includes sanitization instructions requiring the agent to redact any discovered tokens before they appear in output.
Audit Metadata