code-review-assistant
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill consists of markdown-based checklists and guidelines. No malicious command execution, subprocess spawning, or dynamic code evaluation patterns were detected.\n- [SAFE]: No data exfiltration or credential exposure risks were identified. The checklists include items for humans to verify security (e.g., checking for hardcoded secrets), but the skill itself does not access sensitive files.\n- [SAFE]: The configuration detection logic in SKILL.md, which reads the CONTRIBUTING.md file to set language or operational status, is a benign instructional feature and does not present a high-risk injection surface given the skill's lack of dangerous capabilities.\n- [SAFE]: External links point to the author's own GitHub repository (AsiaOstrich/universal-dev-standards), which is a trusted vendor resource for this skill.
Audit Metadata