code-maturity-assessor
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [SAFE] (SAFE): No malicious instructions, obfuscation, or data exfiltration patterns were found within the skill's own instructions or resources.
- [NO_CODE] (SAFE): The skill consists entirely of markdown documentation and does not include any scripts, binary files, or installation requirements.
- [PROMPT_INJECTION] (LOW): The skill exhibits an indirect prompt injection surface (Category 8) because its primary purpose is to ingest and analyze untrusted codebases. Ingestion points: The agent is instructed to explore project structures and read contract/module files (SKILL.md). Boundary markers: Absent. There are no instructions for the agent to use delimiters or ignore embedded instructions in the codebase. Capability inventory: No scripts or subprocesses are present in any of the skill's files; the agent's activity is limited to reading local files and generating reports. Sanitization: Absent.
Audit Metadata