size-check
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection due to its core function of analyzing external project data.
- Ingestion points: Functions 1 and 2 involve reading and analyzing all project files, including Java, Go, Vue, TSX, TypeScript/JS, Python, and Markdown.
- Boundary markers: The skill instructions do not define clear boundary markers or provide directives to the agent to ignore instructions embedded within the files being scanned.
- Capability inventory: The agent has the capability to 'fix any issues found' (Function 1) and provide refactoring suggestions (Function 2), which involves generating code based on potentially malicious file content.
- Sanitization: No sanitization or validation logic is present to filter or escape the content of processed files before they are interpreted by the agent.
Audit Metadata