uncle-bob-clean-code-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- Prompt Injection (SAFE): No malicious override instructions or bypass attempts were detected. The use of terms like 'CRITICAL' and 'HIGH' is contextually appropriate for prioritizing code quality rules.
- Data Exposure & Exfiltration (SAFE): No hardcoded credentials, sensitive file paths, or network communication patterns were found in the skill content.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill contains no package manager files (e.g., package.json, requirements.txt) and does not attempt to download or execute remote scripts.
- Indirect Prompt Injection (SAFE): While the skill is designed to process untrusted code for review, it has no tool-calling or execution capabilities (no subprocess, eval, or file-writing), effectively neutralizing this attack surface.
- No Code (SAFE): The skill is composed entirely of static Markdown documentation and does not include any scripts or binary executables.
Audit Metadata