github-repo-search
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or behaviors were detected in the skill instructions. The logic is focused on structured information retrieval and data filtering.
- [DATA_EXPOSURE_AND_EXFILTRATION]: The skill utilizes public GitHub APIs to fetch information. It explicitly notes that it operates without user-provided tokens by default, which avoids risks related to credential exposure or unauthorized access to private data.
- [INDIRECT_PROMPT_INJECTION]: The skill processes content from external GitHub repositories (READMEs, descriptions, and metadata). While this represents a data ingestion surface for untrusted external content, the skill lacks high-risk capabilities such as command execution, file system modification, or network requests to non-trusted domains. Consequently, the risk of a successful indirect prompt injection causing harm is negligible, as any malicious instructions in a README would only affect the text of the generated report.
- [COMMAND_EXECUTION]: The skill does not contain any instructions or scripts that invoke shell commands, subprocesses, or system-level APIs. All operations are confined to the model's internal reasoning and API interactions.
Audit Metadata