security-scan
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface identified. The skill is designed to ingest and analyze untrusted code provided by the user, which could contain malicious instructions. 1. Ingestion points: The skill accepts user-supplied code or file paths via the 'target' argument in SKILL.md. 2. Boundary markers: There are no explicit delimiters or boundary markers defined in SKILL.md to separate the tool's instructions from the content being scanned. 3. Capability inventory: The skill logic in SKILL.md is restricted to text analysis and report generation and does not have capabilities for subprocess execution, network operations, or file system modifications. 4. Sanitization: No input sanitization or escaping of the ingested code content is specified in the instructions.
Audit Metadata