The Agent Skills Directory

[SAFE]: No malicious patterns or security risks were identified. The skill is purely instructional and defines a legitimate workflow for auditing code changes within a codebase.
[PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by design, as it ingests untrusted code from Merge Requests via the mr_link parameter. Evidence: 1. Ingestion points: Merge Request content defined in SKILL.md. 2. Boundary markers: Absent. 3. Capability inventory: Logical analysis and report generation. 4. Sanitization: Not specified in the instructions. This is a common and necessary characteristic of code review utilities and is considered safe in this context.

Wallet Architecture Review