marketplace-builder
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): The content consists of documentation and templates. No instructions aimed at bypassing AI safety filters or overriding system instructions were found.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, API keys, or suspicious network exfiltration commands are present. Placeholders are used for names and emails.
- [Unverifiable Dependencies] (SAFE): The setup instructions utilize standard local filesystem commands (mkdir, cd) and the official CLI for the target environment. No untrusted third-party scripts are downloaded or executed.
- [Indirect Prompt Injection] (LOW): The 'summarize' and 'quick-review' templates define surfaces where the agent ingests external data (file content and git diffs). This represents a standard indirect prompt injection surface inherent to the tool's purpose, rather than a specific vulnerability in the template itself.
- [Command Execution] (SAFE): Examples use restricted tool access (e.g., 'git diff' only) which aligns with the principle of least privilege.
Audit Metadata