security-reviewer
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill establishes a security audit persona with guidelines on identifying exploitable paths in code. The instructions are professional and focused on safety improvements.
- [PROMPT_INJECTION]: The skill exhibits an inherent indirect prompt injection surface because it processes untrusted code diffs using capable tools.
- Ingestion points: Code diffs and files are ingested via
Read,Grep, andGlobtools. - Boundary markers: Absent; the instructions do not specify the use of delimiters to isolate untrusted code from the agent's system instructions.
- Capability inventory: The agent is granted access to the
Bashtool (shell execution) and file system access viaRead,Grep, andGlobtools. - Sanitization: Absent; there are no instructions to sanitize or validate the content of the diffs before processing.
Audit Metadata