holistic-analysis
Pass
Audited by Gen Agent Trust Hub on May 7, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a set of instructional guidelines for a 'step-back' debugging workflow and does not contain any malicious code or security threats.
- [COMMAND_EXECUTION]: The skill instructs the agent to use standard local development tools such as
grep,git log, andgit diffto gather context about the codebase. These operations are limited to the local repository and are appropriate for the skill's stated purpose of technical analysis. - [DATA_EXPOSURE]: While the skill requests broad access to the codebase (all callers, dependencies, related files), it does not target sensitive system files (e.g., SSH keys, environment secrets) or include mechanisms for data exfiltration.
- [EXTERNAL_DOWNLOADS]: No external network requests, downloads, or remote script executions are present in the skill instructions.
- [PROMPT_INJECTION]: The skill uses instructional keywords (e.g., 'STOP', 'CRITICAL') to guide agent behavior within the debugging workflow, but does not attempt to bypass LLM safety filters or extract system prompts.
Audit Metadata