constraints-reviewer
Pass
Audited by Gen Agent Trust Hub on Mar 24, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions and provided Ruby code snippets are designed for standard database maintenance and performance optimization tasks. No malicious commands, exfiltration patterns, or obfuscation techniques were identified within the skill content or metadata.
- [INDIRECT_PROMPT_INJECTION]: The skill's primary function is to analyze local project files, which constitutes an ingestion point for untrusted data, though the logic is confined to benign review activities.
- Ingestion points: The skill analyzes Rails models and migration files using
Read,Grep, andGlobtools. - Boundary markers: No explicit delimiters or safety instructions are used to segregate analyzed code from the agent's internal instructions.
- Capability inventory: The skill environment grants access to the
Bashtool, allowing for command-line execution. - Sanitization: The skill processes file content as text without implementing specific validation or sanitization routines for potentially malicious content embedded in comments or strings.
Audit Metadata