constitution-validation
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a vulnerability surface for indirect prompt injection due to its core functionality of reading and analyzing untrusted codebase content.
- Ingestion points: The skill ingests files within the project root for discovery and validation using glob, grep, and read operations as specified in SKILL.md.
- Boundary markers: No explicit boundary markers or delimiters are utilized to isolate ingested codebase content from the agent's instructions.
- Capability inventory: The skill possesses the capability to read project files, execute regex-based validation, and perform automated 'autofix' file write operations for L1 rules.
- Sanitization: There is no evidence of sanitization, escaping, or validation of the ingested codebase content before it is processed by discovery agents or the LLM.
Audit Metadata