analyze-coupling-cohesion
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, prompt injections, or obfuscation detected.
- [COMMAND_EXECUTION]: The skill provides shell commands using
grep,find,sort, andwcto analyze PHP source code. These commands are used for static pattern matching (e.g., counting 'use' statements and class definitions) and are restricted to the local codebase context. - [DATA_EXFILTRATION]: There are no network-enabled commands or references to sensitive file paths. The analysis is confined to the project's source directory (
src/). - [INDIRECT_PROMPT_INJECTION]: The skill ingests untrusted data in the form of PHP source code. However, the analysis is performed using deterministic shell utilities for counting structural markers, which minimizes the risk of the agent being misled by instructions embedded within the analyzed code.
Audit Metadata