code-review-graph
Pass
Audited by Gen Agent Trust Hub on Mar 26, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches the uv package manager installation script from Astral's official domain (astral.sh). This is a well-known service used for high-performance Python project management and is considered a safe dependency.- [EXTERNAL_DOWNLOADS]: The skill installs the code-review-graph package via pip, which is consistent with its stated purpose and the provided vendor context.- [DATA_EXFILTRATION]: The skill stores processed codebase metadata in a local SQLite database within the project directory (.code-review-graph/graph.db). The documentation explicitly states that no data leaves the local machine, and analysis confirmed no unauthorized network exfiltration patterns or sensitive file access.- [PROMPT_INJECTION]: The skill identifies as having a surface for indirect prompt injection because it processes untrusted codebase files to generate summaries for the agent. Ingestion points: local codebase files parsed via Tree-sitter. Boundary markers: none specified in instructions. Capabilities: graph querying, impact radius analysis, and semantic search. Sanitization: none. While this constitutes an attack surface, the risk is minimized by the tool's focus on structural mapping rather than execution of external code.
Audit Metadata