pravidhi-bug-review-pipeline
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection because it ingests and processes untrusted external codebases which could contain instructions meant to deceive the analysis agents. Evidence: (1) Ingestion points: All codebase files are read recursively (SKILL.md, bug-finder.md). (2) Boundary markers: Absent; no specific delimiters are used to separate user code from agent instructions. (3) Capability inventory: Limited to local file system read, directory creation, and file writing. (4) Sanitization: None present.
- [COMMAND_EXECUTION]: The skill uses the 'mkdir -p' command to create an output directory for reports. This is a standard and safe operational command for local file management.
- [SAFE]: No network exfiltration patterns, hardcoded credentials, or obfuscation techniques were identified within the skill logic or agent instructions.
Audit Metadata