deslop

Pass

Audited by Gen Agent Trust Hub on Jun 13, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses git diff to identify changed files. This is a standard, safe operation for identifying local changes in a development repository.
  • [DATA_EXPOSURE]: Analysis of the workflow shows it processes local code diffs. There are no instructions or capabilities identified that would exfiltrate data or access sensitive system files like credentials or SSH keys.
  • [INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted data in the form of code diffs. While it lacks specific boundary markers, its operational scope is limited to identifying and removing specific 'slop' patterns, which naturally mitigates the risk of the agent following instructions embedded within the code it is cleaning.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 13, 2026, 11:35 AM
Security Audit — agent-trust-hub — deslop