Skills
skills/claudiodearaujo/izacenter/codex-review/Gen Agent Trust Hub

codex-review

Warn

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: MEDIUMEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONPROMPT_INJECTIONNO_CODE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill directs users to download content from the repository BenedictKing/codex-review. This repository is not associated with the stated author claudiodearaujo and is not part of the trusted vendors list.
  • [REMOTE_CODE_EXECUTION]: The skill requires the installation of an external Codex CLI and fetches code from GitHub to be executed locally via npx. This allows for the execution of code whose safety is unverified.
  • [PROMPT_INJECTION]: The skill processes code as input, creating a surface for indirect prompt injection. 1. Ingestion points: Code files provided for review. 2. Boundary markers: No specific delimiters or instructions to ignore embedded prompts are mentioned. 3. Capability inventory: The skill is capable of generating content and writing to a CHANGELOG.md file. 4. Sanitization: No sanitization of input code content is described.
  • [NO_CODE]: The provided skill file contains instructions but no actual executable logic, making its security dependent on external resources.
Audit Metadata
Risk Level
MEDIUM
Analyzed
Mar 10, 2026, 01:14 AM