perf-theory-gatherer
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- [Category 8: Indirect Prompt Injection] (SAFE): The skill ingests data from external sources like git logs and source code. Ingestion points: git history and repository files (SKILL.md). Boundary markers: Absent. Capability inventory: Local read-only operations via git and grep. Sanitization: Absent. The risk is negligible as the operations are limited to local repository diagnostics.
- [General Analysis] (SAFE): The skill does not contain hardcoded credentials, network exfiltration commands, or obfuscated code. Its operations are consistent with its stated purpose of repository analysis.
Audit Metadata