iterative-coder
Pass
Audited by Gen Agent Trust Hub on Mar 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill operates within the expected parameters of a code development tool. It uses standard file operations and shell commands for linting and testing, maintaining internal state via logs and memory files.
- [COMMAND_EXECUTION]: The skill utilizes the execute tool to perform linting and testing using ruff and pytest. This behavior is legitimate and aligns with the skill's primary purpose of code quality assurance.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it processes external code files and test outputs.
- Ingestion points: Reads local project files and /memory/experiment-memory.md.
- Boundary markers: None present to distinguish instructions from data.
- Capability inventory: Includes execute, write_file, edit_file, and read_file tools.
- Sanitization: No explicit sanitization or filtering of input content is performed.
Audit Metadata