code-refactoring-tech-debt
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill presents a surface for indirect prompt injection as it is designed to analyze external codebase data.
- Ingestion points: The skill instructions (SKILL.md) direct the agent to scan and analyze user-provided codebases.
- Boundary markers: Absent. The instructions do not specify delimiters or warnings to ignore instructions embedded within the analyzed code.
- Capability inventory: The skill focuses on diagnostic analysis and reporting (SKILL.md); it does not define tools for network or file modification, though the agent likely has read access to perform the analysis.
- Sanitization: Absent. No mention of filtering input codebase content.
Audit Metadata