code-quality
Pass
Audited by Gen Agent Trust Hub on May 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill utilizes standard development tools and practices for code quality auditing.
- [COMMAND_EXECUTION]: The skill utilizes local shell scripts (e.g., ./scripts/code-quality.sh) and standard Rust ecosystem commands (e.g., cargo audit, cargo clippy) to perform its primary function. These are project-specific scripts intended for quality gate automation.
- [PROMPT_INJECTION]: The skill processes untrusted project files which provides an attack surface for indirect prompt injection.
- Ingestion points: The agent reads project source code (*.rs) and Cargo.toml manifest files using cat and find.
- Boundary markers: No delimiters or warnings are used to separate ingested content from the agent's internal instructions.
- Capability inventory: The skill can execute shell commands and access the file system via cargo and local scripts.
- Sanitization: The skill does not validate or sanitize the content of the analyzed files before processing.
Audit Metadata