Analyze Codebase
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (LOW): Vulnerable to Indirect Prompt Injection (Category 8).
- Ingestion points: The skill utilizes the
Read,Glob, andGreptools to ingest arbitrary text content from the codebase being analyzed. - Boundary markers: Absent. The instructions do not define delimiters or provide warnings to the agent to disregard instructions that may be embedded within the source code or comments.
- Capability inventory: The skill allows the use of the
Tasktool, which enables the agent to spawn further sub-tasks or deployment swarms based on the analysis of the untrusted code. - Sanitization: Absent. There is no evidence of input escaping or validation for the data read from the codebase before it is processed by the model.
Audit Metadata