review
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Uses the
git diffcommand to retrieve code changes for analysis, which is a standard operation for review tools.\n- [EXTERNAL_DOWNLOADS]: Fetches additional context from established project management platforms such as Jira, Linear, and GitHub when ticket URLs are present in pull request descriptions.\n- [REMOTE_CODE_EXECUTION]: Orchestrates parallel review tasks using the platform-nativeTasktool to spawn subagents for different file groups.\n- [SAFE]: The skill ingests untrusted code and external ticket content. Ingestion points: Git diff artifacts and PR descriptions (Pass 1, Steps 0 and 1). Boundary markers: None specified in the instructions to separate untrusted data from the agent prompt. Capability inventory: Git execution and subagent spawning. Sanitization: None; the data is processed directly to identify vulnerabilities.
Audit Metadata