code-reviewer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill is designed to process external code, which introduces a surface for indirect prompt injection. Ingestion points: Untrusted data enters via the $ARGUMENTS variable in SKILL.md. Boundary markers: The prompt lacks explicit delimiters or instructions to ignore embedded commands within the code being reviewed. Capability inventory: Available tools are restricted to Read and Grep, limiting potential impact to information disclosure or task manipulation. Sanitization: No input sanitization or validation is present.
Audit Metadata