Skills
skills/yelban/orz99-skills/code-review/Gen Agent Trust Hub

code-review

Pass

Audited by Gen Agent Trust Hub on Feb 19, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION] (LOW): The skill instructs the agent to invoke shell commands like 'git diff' and 'gh pr diff'. If the agent passes user-provided arguments (like branch names or PR numbers) directly to the shell without sanitization, it could lead to command injection.
  • [PROMPT_INJECTION] (LOW): The skill is susceptible to Indirect Prompt Injection (Category 8) because it processes untrusted code changes.
  • Ingestion points: It reads raw file content, dependency files, and git diffs from the local repository and GitHub (Step 0).
  • Boundary markers: Absent. There are no instructions to treat the analyzed code as data rather than instructions or to use delimiters.
  • Capability inventory: The skill has the capability to read arbitrary files and execute shell commands (git/gh).
  • Sanitization: Absent. No input validation or escaping is performed on the data retrieved from the files or diffs.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 19, 2026, 03:43 PM