go-function-analysis
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- [SAFE] (SAFE): No malicious patterns or security vulnerabilities were detected. The skill performs localized analysis of source code and writes metrics to a markdown file within the same workspace.
- [COMMAND_EXECUTION] (LOW): The skill executes local shell scripts and standard system utilities (find, awk, bc, sed). These operations are restricted to the workspace and are necessary for the stated functionality.
- [Indirect Prompt Injection] (LOW): The skill processes untrusted workspace data (Go files). It implements defensive parsing using specific regular expressions (
[a-zA-Z_][a-zA-Z0-9_]*) for function identifiers and produces purely informational output, posing minimal risk of exploitation or downstream influence on agent logic.
Audit Metadata