review-agents-md-adherence
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): The skill executes
git diffto identify modified files. This is a local command execution limited to discovering project state. - [PROMPT_INJECTION] (LOW): The skill is vulnerable to Indirect Prompt Injection (Category 8). * Ingestion points: It reads instructions from
AGENTS.md,CLAUDE.md,.cursorrules, and project source files. * Boundary markers: None; it treats content in these files as authoritative instructions for its audit. * Capability inventory: Limited to file reading and markdown report generation; it lacks network or file-write permissions. * Sanitization: None; the agent does not filter or escape content from external files. * Risk: An attacker could place malicious instructions in an AGENTS.md file to manipulate the auditor's findings or suggest malicious code changes.
Audit Metadata