Command Development
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [SAFE]: No malicious code or suspicious patterns were found. The skill is an educational resource for developers.
- [INDIRECT_PROMPT_INJECTION]: The skill documents patterns for ingesting file content into the prompt context via the @ syntax, which is an inherent feature of the slash command system. To mitigate risks, the documentation includes a 'Validation Patterns' section and advocates for restricted tool permissions.
- [COMMAND_EXECUTION]: The skill provides numerous examples of bash execution used for gathering context (e.g., git status). It provides safe patterns for using these features, including verifying resource existence and validating positional arguments.
Audit Metadata