ast-grep
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides a structured set of guidelines for using the
ast-greptool. All analyzed content is instructional and follows industry-standard documentation practices. - [SAFE]: External references and links point exclusively to the official documentation (ast-grep.github.io), the official GitHub organization, and well-known community resources. These are considered trusted sources.
- [SAFE]: The installation and build scripts (
pnpm install,pnpm build,pnpm validate) mentioned in the README are standard development commands for managing project dependencies and generating documentation from source files. - [SAFE]: No evidence of prompt injection, data exfiltration, obfuscation, or unauthorized command execution was found across the 52 files. The examples provided within the rules (e.g., matching
eval()orconsole.log) are correctly presented as patterns for detection, not for malicious execution.
Audit Metadata