clean-code-reviewer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill is entirely instruction-based and does not include any scripts or executable code.
- [Indirect Prompt Injection] (LOW): The skill processes user-provided code. While this is an ingestion point for untrusted data, the skill lacks the capabilities (e.g., shell access, network requests) to be exploited via this vector.
- Ingestion points: User-provided code via the prompt (SKILL.md).
- Boundary markers: Absent.
- Capability inventory: Pure text generation; no subprocess, exec, file-write, or network operations found.
- Sanitization: Absent.
- [No Code] (SAFE): No external dependencies or remote code execution patterns were identified.
Audit Metadata