Skills
skills/vasilyu1983/ai-agents-public/qa-docs-coverage/Gen Agent Trust Hub

qa-docs-coverage

Pass

Audited by Gen Agent Trust Hub on Mar 13, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill invokes local Python scripts (check_local_links.py, docs_freshness_report.py) and the tree utility to analyze the target repository.
  • [EXTERNAL_DOWNLOADS]: Recommends using external services and tools for repository context extraction, such as gitingest.com and the repo2txt utility from GitHub (github.com/kirill-markin/repo2txt).
  • [PROMPT_INJECTION]: The skill presents an attack surface for indirect prompt injection (Category 8) by processing untrusted codebase data through AI-assisted audit workflows. Ingestion points: Analyzes codebase contents via tools like gitingest and repo2txt (specified in SKILL.md). Boundary markers: None identified in the provided instructions. Capability inventory: Includes execution of local Python scripts and shell commands. Sanitization: No evidence of input validation or content filtering before processing.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 13, 2026, 04:23 AM