Skills
skills/levnikolaevich/claude-code-skills/ln-651-query-efficiency-auditor/Gen Agent Trust Hub

ln-651-query-efficiency-auditor

Pass

Audited by Gen Agent Trust Hub on Apr 24, 2026

Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill processes untrusted codebase files which constitutes a surface for indirect prompt injection where malicious code could influence agent behavior. 1. Ingestion points: codebase files accessed via Grep, Glob, and Read tools. 2. Boundary markers: No explicit markers or instructions to ignore embedded content are defined. 3. Capability inventory: Includes Bash for command execution and Write for reporting. 4. Sanitization: No specific filtering or escaping of analyzed content is mentioned.
  • [EXTERNAL_DOWNLOADS]: The skill fetches reference documentation, templates, and audit contracts from the author's GitHub repository (github.com/levnikolaevich) when local files are missing.
  • [COMMAND_EXECUTION]: The skill uses the Bash tool to perform automated scanning and call-chain tracing within the target codebase.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 24, 2026, 07:48 AM