classifying-review-findings
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Prompt Injection (LOW): The skill is susceptible to Indirect Prompt Injection (Category 8) due to its processing of external code review data.
- Ingestion points: The skill ingests untrusted code snippets and developer comments during the classification process.
- Boundary markers: Absent. The instructions do not define specific delimiters to separate the system instructions from the input findings.
- Capability inventory: No dangerous capabilities detected. The skill lacks file system access, network connectivity, and command execution routines.
- Sanitization: Absent. There is no mention of escaping or filtering input data before classification.
Audit Metadata