typescript-code-review
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of markdown-based instructions for code analysis and does not contain any executable scripts or binary files.
- [PROMPT_INJECTION]: No patterns were detected that attempt to override system prompts, bypass safety filters, or extract underlying instructions.
- [DATA_EXFILTRATION]: There are no commands or logic for accessing sensitive file paths or making external network requests to non-whitelisted domains.
- [REMOTE_CODE_EXECUTION]: The skill does not download external packages or execute remote code; it only provides guidelines for the agent's behavior.
- [COMMAND_EXECUTION]: No dangerous system commands, privilege escalation attempts, or persistence mechanisms were found in the instructions.
- [INDIRECT_PROMPT_INJECTION]: While the skill is designed to ingest and analyze external code provided by users (an attack surface), it lacks the capabilities (such as file-write or network operations) required to translate an injection into a high-severity exploit.
Audit Metadata