auth
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill performs legitimate security analysis using local grep patterns and calls to common security scanners like semgrep and bandit. All described operations are confined to the user-provided source code scope and align with the stated purpose of finding OWASP-related vulnerabilities.- [PROMPT_INJECTION]: There is an inherent architectural surface for indirect prompt injection, as the skill is designed to read and analyze untrusted source code.
- Ingestion points: Authentication-related files, such as route handlers and middleware, are read into the agent context in the 'Claude Analysis' step of the workflow.
- Boundary markers: The skill does not specify the use of delimiters or 'ignore' instructions when reading the contents of these external files.
- Capability inventory: The skill allows the execution of local security scanner binaries and file system read operations.
- Sanitization: The skill does not perform any sanitization or filtering of the source code content before it is processed by the agent.
Audit Metadata