non-compliance
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill is entirely instructional and does not include any executable scripts or binary files.\n- [NO_CODE]: The skill contains only documentation and guidance for the AI agent to follow during a manual or semi-automated code review process.\n- [PROMPT_INJECTION]: The skill provides instructions for reading and analyzing untrusted source code, which creates an indirect prompt injection surface.\n
- Ingestion points: Source files are read and processed during the 'Analyze for Non-Compliance' phase (Step 2).\n
- Boundary markers: There are no explicit instructions to use delimiters or to ignore instructions embedded within the analyzed code.\n
- Capability inventory: The skill mentions a
--fixflag for generating code but lacks autonomous execution capabilities or system-level write permissions.\n - Sanitization: Input source code is not sanitized or filtered prior to analysis.
Audit Metadata