umbraco-review-checks
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [SAFE] (SAFE): No malicious behavior, obfuscation, or unauthorized data exfiltration patterns were detected. All provided links point to legitimate official documentation for Umbraco.
- [PROMPT_INJECTION] (LOW): Potential Indirect Prompt Injection Surface. 1. Ingestion points: The skill is designed to read and analyze workspace files such as .element.ts and manifest files. 2. Boundary markers: The reference documents do not specify any delimiters or instructions to ignore embedded prompts in analyzed code. 3. Capability inventory: The skill is configured with the 'Read' tool. 4. Sanitization: No sanitization logic or content validation is provided for the files being analyzed.
- [NO_CODE] (SAFE): The skill consists exclusively of static Markdown reference files and contains no executable scripts or binary files.
Audit Metadata