Skills
skills/k1lgor/mega-mind-skills/plankton-code-quality/Gen Agent Trust Hub

plankton-code-quality

Pass

Audited by Gen Agent Trust Hub on Apr 7, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill configures PostToolUse and PreToolUse hooks to automatically execute shell commands (such as node, ruff, biome, and shfmt) whenever a file is written or edited. This automated execution pipeline is the intended mechanism for the Plankton methodology described in SKILL.md to ensure write-time code quality enforcement.
  • [PROMPT_INJECTION]: The skill architecture creates a surface for indirect prompt injection by ingesting data from external linter tools and delegating autonomous fixes to subagents.
  • Ingestion points: Violation data is captured from the output of third-party CLI tools (e.g., ruff, biome, shellcheck) through the multi-linter.js script.
  • Boundary markers: The instructions and configuration examples do not define explicit delimiters or instructions for the subagent to disregard instructions potentially embedded within linter violation messages.
  • Capability inventory: Subagents are granted the capability to edit and write files to the filesystem to perform code fixes.
  • Sanitization: The skill does not describe any sanitization or validation of the ingested linter output before it is passed to the subagent for processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 7, 2026, 04:23 PM
Security Audit — agent-trust-hub — plankton-code-quality