explain
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface identified where the skill incorporates code from the user's repository into its response. 1. Ingestion points: The skill uses Grep and Glob to read files from the user's codebase (as described in SKILL.md). 2. Boundary markers: No delimiters or instructions to ignore embedded commands were found in the workflow. 3. Capability inventory: The skill performs file reads and codebase searches. 4. Sanitization: No sanitization of the extracted code content is performed before it is added to the agent context.
- [NO_CODE]: This skill consists entirely of markdown instructions and does not include executable scripts.
Audit Metadata