performance-analyzer
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION] (HIGH): The skill possesses a high-risk attack surface because it ingests untrusted data and has the capability to modify the local environment. * Ingestion points: Source code files accessed via Read, Grep, and Glob tools. * Boundary markers: Absent. The skill does not define any delimiters or instructions to ignore embedded commands in the files it analyzes. * Capability inventory: Extensive file system access including Write and Edit operations. * Sanitization: Absent. There is no logic to filter or validate the content of the files being processed.
- [COMMAND_EXECUTION] (MEDIUM): The allowed-tools list includes Write and Edit, granting the skill the ability to perform persistent changes to the local filesystem based on its analysis of potentially untrusted code.
Recommendations
- AI detected serious security threats
Audit Metadata