python-code-review
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): All analyzed files are Markdown documents providing reference material. No scripts, binaries, or automated configuration files were detected that would allow for command execution or system modification.\n- Indirect Prompt Injection (LOW): The skill is designed to process untrusted Python code provided by users. While this is an ingestion surface for potential indirect prompt injection, the skill itself possesses no dangerous capabilities (such as network access, file system writes, or subprocess execution) that an attacker could leverage. The output is limited to text-based review comments.\n
- Ingestion points: User-supplied Python files or code blocks processed for review.\n
- Boundary markers: Not explicitly defined in the skill files, but standard in the agent's interaction model.\n
- Capability inventory: None. The skill provides no automated tools or executable scripts.\n
- Sanitization: Not applicable as the skill provides guidelines for human-like review rather than executing the code.
Audit Metadata