requesting-code-review
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (LOW): The skill executes standard git commands such as
git rev-parseandgit diffto identify commit hashes and display code changes for review. These are standard development operations. - PROMPT_INJECTION (LOW): The
code-reviewer.mdtemplate is a surface for indirect prompt injection because it interpolates untrusted data like{DESCRIPTION}and{PLAN_REFERENCE}into the subagent prompt. 1. Ingestion points: placeholders incode-reviewer.mdtemplate. 2. Boundary markers: The template uses Markdown headers to separate sections. 3. Capability inventory: The reviewer agent can read repository data viagit diff. 4. Sanitization: No sanitization is performed on the input placeholders.
Audit Metadata