red-flags
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill analyzes untrusted code provided in arguments, which creates a surface for indirect prompt injection. Malicious instructions embedded in the analyzed code could potentially influence the agent's behavior.
- Ingestion points: The skill uses the Read tool to ingest code from file paths or directories.
- Boundary markers: There are no explicit delimiters or instructions to treat the analyzed code as data, increasing the risk that the agent may follow instructions found within the code.
- Capability inventory: The skill is restricted to Read and Grep tools, with no authorization for network access or file modifications, which significantly limits the potential impact of any injection.
- Sanitization: No sanitization or filtering of the ingested code content is performed.
- [NO_CODE]: The skill does not include any executable scripts or binaries; it consists entirely of instructions and reference documentation for the agent.
Audit Metadata