bug-report
Pass
Audited by Gen Agent Trust Hub on Mar 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues detected. The skill uses its permitted tools (Read, Glob, Grep, Write) to perform context gathering and code analysis as described in the documentation.\n- [PROMPT_INJECTION]: Analysis of indirect prompt injection surface. 1. Ingestion points: Local file content is read via Read, Glob, and Grep tools during codebase search and analysis. 2. Boundary markers: None provided to isolate untrusted code content from instructions. 3. Capability inventory: The skill has Read, Glob, Grep, and Write permissions. 4. Sanitization: None. This vulnerability surface is typical for automated code analysis tools and no evidence of exploitation or malicious intent was found.
Audit Metadata