code-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [NO_CODE]: The skill is a documentation-only definition and does not ship with any executable scripts or binary files.
- [EXTERNAL_DOWNLOADS]: The documentation references trusted industry tools like ESLint, Pylint, and SonarLint, as well as reputable learning resources such as GitHub and Amazon.
- [PROMPT_INJECTION]: The skill describes an interface for analyzing external source code, which introduces a potential surface for indirect prompt injection. * Ingestion points: Local source code files accessed via directory paths. * Boundary markers: None defined to isolate code from potential embedded instructions. * Capability inventory: Reasoning over file contents and generating report files. * Sanitization: No validation or filtering of the content being analyzed is mentioned.
Audit Metadata