kotlin-specialist

Pass

Audited by Gen Agent Trust Hub on Jun 16, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: A detailed review of the skill's instructions and reference materials found no evidence of malicious patterns, obfuscation, or unauthorized data access.
  • [EXTERNAL_DOWNLOADS]: The skill documentation references official Kotlin and Android libraries, such as kotlinx-coroutines, Ktor, and Jetpack Compose. These are established industry-standard dependencies from reputable sources.
  • [COMMAND_EXECUTION]: The suggested workflow involves the use of standard development tools, specifically detekt and ktlint. These are widely accepted static analysis tools used for code quality and do not represent a security risk in this context.
  • [PROMPT_INJECTION]: The skill identifies a potential surface for indirect prompt injection as it is designed to analyze user-provided Kotlin code.
  • Ingestion points: The skill processes source code from the user's project environment.
  • Boundary markers: There are no explicit delimiters or instructions provided to the agent to disregard instructions embedded within the processed code.
  • Capability inventory: The workflow involves the execution of shell commands for linting and formatting (detekt, ktlint).
  • Sanitization: There is no defined validation or sanitization step for the code before it is analyzed or passed to external tools.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 16, 2026, 01:05 PM
Security Audit — agent-trust-hub — kotlin-specialist