devsec-reviewing-code-for-security
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to analyze untrusted code provided by users, which creates a surface for indirect prompt injection. Malicious instructions could be embedded within comments or string literals in the code being reviewed to influence the agent's behavior. 1. Ingestion points: User-provided code snippets and review requests (referenced in SKILL.md). 2. Boundary markers: The workflow lacks explicit delimiters or instructions to ignore embedded commands within user-provided code. 3. Capability inventory: The skill can read local reference documents and trigger the devsec-saving-report skill for file writing. 4. Sanitization: No specific sanitization or filtering of input code is described.
Audit Metadata