reviewing-code
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill package is composed exclusively of Markdown documentation. There are no executable files, scripts, or system configurations present in the repository.- [Indirect Prompt Injection] (SAFE): The skill provides a framework for reviewing external code, which is a potential ingestion point for malicious instructions. However, the skill possesses no capabilities (network, filesystem, or execution) to be exploited.
- Ingestion points: Pull request descriptions and code snippets processed during the review workflow.
- Boundary markers: None explicitly used to delimit untrusted code from instructions.
- Capability inventory: Zero. No execution, network, or file-write operations are present in any of the files.
- Sanitization: Not applicable as the agent only generates textual feedback.
Audit Metadata