analyzing-code-security
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it is designed to process and analyze untrusted source code provided by users.
- Ingestion points: User-provided source code files and snippets intended for security analysis, as described in the Security Review Workflow section of SKILL.md.
- Boundary markers: The instructions do not specify any delimiters or safety warnings to prevent the agent from executing or obeying instructions embedded within the analyzed code.
- Capability inventory: The skill's capabilities are limited to providing text-based security reviews and mapping findings to CWE identifiers; it does not have the ability to execute code, write to the file system, or access the network.
- Sanitization: There is no requirement for the agent to sanitize, escape, or validate the structure of the input code to mitigate the risk of instructions being interpreted as agent commands.
Audit Metadata