axum-code-review
Pass
Audited by Gen Agent Trust Hub on May 5, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [SAFE]: The skill consists of instructional Markdown files providing technical guidance for code review. All patterns described align with standard industry practices for the Axum web framework.
- [NO_CODE]: The skill contains no executable scripts, shell commands, or dynamic code execution patterns. It functions purely as a knowledge base for the AI agent.
- [EXTERNAL_DOWNLOADS]: The documentation references standard Rust ecosystem crates such as axum, tokio, and tower-http. These are well-known libraries and their mention in documentation is safe.
- [SAFE]: The skill handles untrusted Rust source code as its primary input (Indirect Prompt Injection surface). Evidence: (1) Ingestion points: User-provided Rust source code (reviewed at runtime); (2) Boundary markers: Absent in the skill instructions; (3) Capability inventory: No executable capabilities, subprocess calls, or network operations are defined within the skill files; (4) Sanitization: Absent; however, the skill's role is restricted to descriptive analysis without code execution.
Audit Metadata