Skills
skills/yyh211/claude-meta-skill/local-diff-review/Gen Agent Trust Hub

local-diff-review

Pass

Audited by Gen Agent Trust Hub on Feb 27, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes local shell commands, including git status, git branch, git remote, git diff, and git show, to obtain repository state and code changes. These are standard operations for a development-focused code review tool and are used here to provide the context necessary for its primary analysis function.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) due to the analysis of external code content.
  • Ingestion points: Untrusted data enters the agent's context through the output of git diff and git show as described in SKILL.md.
  • Boundary markers: The instructions do not include specific delimiters or warnings to ignore embedded instructions within the ingested diff content.
  • Capability inventory: The skill has the capability to execute Git commands and generate analysis based on the code it reads.
  • Sanitization: No sanitization or filtering of the code content is performed before the agent processes it for review.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 27, 2026, 12:29 PM