ffi-code-review
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill consists entirely of markdown documentation and reference material. No executable scripts, binaries, or command-line operations are included in the skill package.
- [PROMPT_INJECTION]: The skill creates an indirect prompt injection surface because it is designed to ingest and analyze untrusted external data in the form of Rust source code and build configuration files.
- Ingestion points: The instructions guide the agent to read and analyze
Cargo.toml,build.rs, and various Rust source files during the review process. - Boundary markers: There are no instructions provided to treat input code as untrusted or to use delimiters to separate source code from agent instructions.
- Capability inventory: No tool-use or execution capabilities are requested in the skill's configuration frontmatter.
- Sanitization: No sanitization or validation of the input code is suggested or performed.
Audit Metadata