Skills
skills/erichowens/some_claude_skills/code-review-checklist/Gen Agent Trust Hub

code-review-checklist

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill instructions direct the agent to analyze external data (PR diffs and codebase content), creating a surface for indirect prompt injection.\n
  • Ingestion points: The skill utilizes Read, Grep, and Glob tools to ingest codebase files and PR diffs as described in the 'Approach' section of SKILL.md.\n
  • Boundary markers: The skill does not define specific boundary markers or instructions to ignore embedded commands within the ingested code or diffs.\n
  • Capability inventory: The skill utilizes file system tools (Read, Grep, Glob) across its documented workflow, allowing for data ingestion without network or execution capabilities.\n
  • Sanitization: No sanitization or validation logic is specified for the content read from the files during the checklist generation process.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 02:34 PM