ln-651-query-efficiency-auditor
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through the source code files it is tasked to audit.\n
- Ingestion points: Untrusted data enters the agent context through codebase files read via the Grep, Glob, and Read tools.\n
- Boundary markers: The instructions do not specify any delimiters or safety warnings to ignore instructions that might be embedded within the audited code (e.g., in comments).\n
- Capability inventory: The skill has access to the Bash and Write tools, which could be leveraged if the agent is tricked by malicious instructions in the audited data.\n
- Sanitization: There is no evidence of sanitization, escaping, or validation of the code content before it is analyzed or included in the report generation phase.
Audit Metadata