design-review
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill functions as a static analysis tool for documentation, utilizing only read-only tools provided by the platform.
- [SAFE]: No patterns of credential harvesting, data exfiltration, or malicious persistence were identified.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted data from user-provided design documents. However, this risk is mitigated by the absence of high-risk capabilities like network access or file-system modification.
- Ingestion points: Reads the target design document and related files in the design/gdd/ directory.
- Boundary markers: No explicit delimiters or instructions are used to separate untrusted content from system instructions.
- Capability inventory: Restricted to read-only file system operations (Read, Glob, Grep).
- Sanitization: No input validation or content filtering is applied to the ingested documents.
Audit Metadata