refactor-clean
Pass
Audited by Gen Agent Trust Hub on Apr 5, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is composed of static markdown files containing instructions for refactoring. It does not include executable code, network exfiltration patterns, or unauthorized file access.
- [PROMPT_INJECTION]: The skill processes untrusted code provided by the user, which presents a surface for indirect prompt injection. However, the instructions are purely structural and do not provide a direct path for executing injected commands.
- Ingestion points: User-provided code or selected file regions (SKILL.md).
- Boundary markers: No specific boundary markers or instructions to ignore embedded commands are present.
- Capability inventory: The agent typically has file read/write capabilities to perform refactoring.
- Sanitization: No sanitization or validation of the input code is specified.
Audit Metadata