gitnexus-refactoring
Pass
Audited by Gen Agent Trust Hub on Jun 16, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The documentation suggests running 'npx gitnexus analyze' to refresh the codebase index, which fetches the GitNexus utility from the NPM registry.
- [COMMAND_EXECUTION]: Includes automated tools such as 'gitnexus_rename' and 'gitnexus_detect_changes' that modify project files and analyze directory structures to perform refactoring tasks.
- [PROMPT_INJECTION]: (Category 8 surface analysis) 1. Ingestion points: The skill reads local source code files through analysis tools like 'gitnexus_query' and 'gitnexus_context' (SKILL.md). 2. Boundary markers: Absent; the skill does not explicitly define delimiters to separate ingested code from instructions. 3. Capability inventory: The agent can write to the file system via 'gitnexus_rename' and execute graph-based analysis via 'gitnexus_cypher' (SKILL.md). 4. Sanitization: Absent; the skill does not specify validation or filtering of the code content before analysis.
Audit Metadata