simplify-code

Pass

Audited by Gen Agent Trust Hub on Jul 1, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes and modifies user-provided source code, which introduces a surface for indirect prompt injection where malicious instructions could be embedded in the code comments or data.
  • Ingestion points: Source code files retrieved from the filesystem using the Read, Grep, and Glob tools.
  • Boundary markers: No explicit delimiters or instructions are provided to the agent to ignore embedded commands within the source data.
  • Capability inventory: The skill is permitted to use the Write and Edit tools to modify files in the codebase.
  • Sanitization: There is no evidence of input validation or sanitization of the code content before it is processed by the model.
  • [COMMAND_EXECUTION]: The skill's verification protocol includes running shell commands such as 'npm run test' and 'npm run build'. While common for development workflows, these commands execute scripts defined in the local project environment, the integrity of which should be verified.
Audit Metadata
Risk Level
SAFE
Analyzed
Jul 1, 2026, 12:39 PM
Security Audit — agent-trust-hub — simplify-code