Skills
skills/nickcrew/claude-ctx-plugin/codex-code-review/Gen Agent Trust Hub

codex-code-review

Pass

Audited by Gen Agent Trust Hub on Feb 24, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill relies on the execution of multiple command-line tools to function. It invokes codex --full-auto c to generate code reviews, performs Git operations like git add and git commit to manage changes, and uses a backlog CLI tool to manage tasks based on findings. It also executes a local helper script scripts/parse_codex_review.sh to process review data.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it parses and acts upon suggestions found in externally generated review files.
  • Ingestion points: Reads markdown files from the .agent/reviews/ directory generated by the codex CLI.
  • Boundary markers: No explicit delimiters or warnings are used to separate the review content from the agent's logic.
  • Capability inventory: The agent is authorized to modify source code, commit changes via Git, and interact with a backlog system.
  • Sanitization: No validation or sanitization is performed on the content of the 'Suggested fix' fields before the agent implements them in the codebase.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 24, 2026, 05:58 AM