Skills
skills/tech-leads-club/agent-skills/coupling-analysis/Gen Agent Trust Hub

coupling-analysis

Pass

Audited by Gen Agent Trust Hub on Feb 26, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes a shell command to analyze repository history, which is required for the volatility assessment phase.
  • Evidence: The instruction in SKILL.md uses git log --since="6 months ago" --format="" --name-only | sort | uniq -c | sort -rn | head -20 to calculate file change frequency.
  • [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it is designed to ingest and interpret untrusted data from external codebases.
  • Ingestion points: Analyzes code files, namespaces, and directory structures during structural mapping in Phase 2.
  • Boundary markers: Absent. The skill does not provide instructions to wrap code in delimiters or warn the agent to ignore instructions embedded in the analyzed code.
  • Capability inventory: The skill can execute shell commands (git) and generate complex text reports based on analyzed data.
  • Sanitization: Absent. No filtering or escaping of the ingested code content is specified before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 26, 2026, 08:32 PM