code-review
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- Indirect Prompt Injection (LOW): The skill is designed to ingest and analyze untrusted external content (code diffs and file contents). This presents an attack surface where an adversary could embed malicious instructions within code comments or strings to influence the agent's review 'Decision' or 'Findings'. * Ingestion points: 'diff/files' and 'CI/test/coverage info' (SKILL.md). * Boundary markers: No explicit delimiters or instructions to ignore embedded commands are specified for the input data. * Capability inventory: The skill is limited to generating textual summaries and recommendations; it has no file system, network, or command execution capabilities. * Sanitization: No sanitization or input validation logic is described for the content being reviewed.
- No Code (INFO): This skill consists purely of markdown instructions and contains no executable scripts, binaries, or package dependencies.
Audit Metadata