security-review
Fail
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: CRITICALNO_CODE
Full Analysis
- [SAFE]: The skill's behavior is consistent with its stated purpose of assisting in security code reviews. No malicious intent, exfiltration, or unauthorized command execution patterns were found.
- [NO_CODE]: The skill does not contain any executable Python or JavaScript files. It consists solely of Markdown-based reference guides and instructions.
- [PROMPT_INJECTION]: The skill presents an inherent surface for indirect prompt injection because it is designed to ingest and analyze untrusted user-provided code. Ingestion points: Code files are accessed using
Read,Grep, andGlobtools. Boundary markers: No specific delimiters are used to isolate untrusted input. Capability inventory: The agent has access toBashandTasktools. Sanitization: No automated sanitization is applied to input code; however, the agent is explicitly instructed to distinguish between auditing research and executable findings. - [EXTERNAL_DOWNLOADS]: The documentation references external security testing tools such as
ysoserial.net. While identified as a source of security testing payloads, its inclusion here is for informational reference within a security auditing context and does not involve automated downloads or execution by the agent.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata