code-review
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill actively promotes security by instructing the agent to check for common vulnerabilities including SQL injection, cross-site scripting (XSS), and hardcoded credentials.
- [SAFE]: No evidence of data exfiltration, unauthorized network access, or persistence mechanisms was found in the instructions or reference materials.
- [SAFE]: The skill does not contain any obfuscated code, hidden instructions, or attempts to bypass the agent's safety filters.
- [SAFE]: While the skill is designed to process untrusted code inputs (representing an Indirect Prompt Injection surface), it does not request or utilize dangerous tools that could be leveraged for an attack, such as arbitrary command execution or external data transmission.
- [SAFE]: The references to local configuration files (e.g., .cursor/rules/) are standard for specialized development environments and do not pose a security risk in this context.
Audit Metadata