skill-safety-audit
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill contains no executable code or unsafe instructions and serves as a defensive guideline for repository management.
- [PROMPT_INJECTION]: The skill processes untrusted SKILL.md files for audit purposes, which constitutes an indirect prompt injection surface. This risk is inherent to its primary purpose as a security tool.
- Ingestion points: Audited 'SKILL.md' files.
- Boundary markers: Absent.
- Capability inventory: Use of the 'Superpowers plugin' for enhanced analysis.
- Sanitization: Absent, as the focus is on identifying malicious content rather than processing it.
Audit Metadata