diffity-review
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: Executes shell commands including git, grep, and the diffity CLI to perform repository analysis and manage review sessions.
- [EXTERNAL_DOWNLOADS]: Instructs the agent to install the diffity package globally from the NPM registry if it is not present on the system.
- [PROMPT_INJECTION]: Vulnerable to indirect prompt injection as it processes untrusted content from diffs and source files without sanitization.
- Ingestion points: unified diffs, modified source code, and CLAUDE.md files.
- Boundary markers: No explicit delimiters or instructions are used to isolate untrusted data.
- Capability inventory: Can write comments to the review session and execute search commands on the local system.
- Sanitization: No validation or sanitization is performed on ingested data.
Audit Metadata