context-hunter
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill provides high-level behavioral instructions for an AI agent to perform context gathering and code analysis. No malicious instructions, safety bypasses, or data exfiltration patterns were detected.
- [NO_CODE]: The skill is composed entirely of markdown instructions and metadata. It does not include any scripts, binaries, or configuration files that could be used to execute code or establish persistence.
- [PROMPT_INJECTION]: The skill inherently includes a surface for indirect prompt injection as it requires the agent to read and process external codebase data.
- Ingestion points: The agent is instructed to read local source files and git commit history during the discovery workflow.
- Boundary markers: None; the skill does not define specific delimiters to distinguish between its own instructions and content found in analyzed files.
- Capability inventory: The skill directs the agent to execute standard development tools such as linters, type-checkers, and test runners.
- Sanitization: There are no instructions for sanitizing or escaping the content retrieved from external files before processing.
Audit Metadata