insecure-defaults
Pass
Audited by Gen Agent Trust Hub on Apr 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill acts as an instruction set for auditing codebases. The hardcoded secrets found in references/examples.md are identified as dummy values and placeholders used solely for educational and demonstrative purposes.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface due to its requirement to read and process untrusted data from local files.
- Ingestion points: The skill uses Read, Grep, and Glob tools to ingest content from project files and environment configurations.
- Boundary markers: No specific delimiters are provided to isolate file content from the agent's control logic.
- Capability inventory: The agent has access to the Bash tool, enabling potential command execution based on processed data.
- Sanitization: There is no mention of input sanitization or validation for content extracted from files before it is processed by the agent.
Audit Metadata