generic-fullstack-code-reviewer
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions to override behavior, bypass safety filters, or extract system prompts were detected.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials or sensitive file paths were found. The skill correctly instructs on protecting .env files and ensuring they are not committed to version control.
- [Remote Code Execution] (SAFE): No remote script downloads or unverifiable dependency installations. Shell commands provided (npm, npx) are standard for building, linting, and testing local code.
- [Privilege Escalation & Persistence] (SAFE): No commands found that attempt to acquire elevated privileges (e.g., sudo) or establish persistent access to the host system.
- [Indirect Prompt Injection] (SAFE): While the skill reviews external code, it does not include instructions that would unsafely interpolate untrusted content into execution contexts.
Audit Metadata