Skills
skills/openshift/lightspeed-service/find-dead-code/Gen Agent Trust Hub

find-dead-code

Pass

Audited by Gen Agent Trust Hub on May 16, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute several standard command-line tools including git, grep, vulture, pylint, and ripgrep. These are used appropriately for their documented purposes: determining file changes, filtering results, and performing static analysis to find dead code.
  • [EXTERNAL_DOWNLOADS]: The skill uses uvx to run vulture. uvx is a package runner (similar to npx) that may download the specified tool from the Python Package Index (PyPI). vulture is a widely recognized and reputable static analysis tool for Python.
  • [REMOTE_CODE_EXECUTION]: The execution of vulture via uvx and pylint via uv run constitutes running external code, but these are well-known development tools used locally on the codebase and do not represent a security risk in this context.
Audit Metadata
Risk Level
SAFE
Analyzed
May 16, 2026, 11:32 AM
Security Audit — agent-trust-hub — find-dead-code