code-review
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- Indirect Prompt Injection (LOW): The skill's primary purpose is to analyze external, untrusted code which could contain malicious instructions designed to influence the agent's behavior.
- Ingestion points: Processed code snippets provided for review.
- Boundary markers: Absent; no delimiters or ignore-instructions are defined.
- Capability inventory: None; the skill lacks any scripts, subprocess execution, or network capabilities.
- Sanitization: Absent; there is no evidence of input validation or escaping.
- No Code (SAFE): The skill consists entirely of markdown instructions with no accompanying executable scripts or binaries, eliminating the possibility of direct system compromise.
Audit Metadata