repo-rename

Warn

Audited by Gen Agent Trust Hub on Jul 5, 2026

Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill performs directory moves and updates repository configurations using shell commands, git, and the GitHub CLI.- [DATA_EXFILTRATION]: The skill accesses and modifies sensitive files and directories in the user's home folder, including ~/.claude/projects, ~/.codex/sessions, and ~/.codex/config.toml.- [COMMAND_EXECUTION]: The workflow involves dynamic file modification where search results from ripgrep are passed to perl for in-place content replacement.- [PROMPT_INJECTION]: The skill processes repository content and external tool transcripts which could contain untrusted data, presenting a surface for indirect instructions to influence file modifications.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Jul 5, 2026, 05:05 PM
Security Audit — agent-trust-hub — repo-rename