Skills
skills/fandhe-ai/agent-reference-skills/implement-review/Gen Agent Trust Hub

implement-review

Pass

Audited by Gen Agent Trust Hub on Mar 20, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill uses git diff to fetch code changes from the local repository. This is a standard and safe operation for a code review tool.
  • [PROMPT_INJECTION]: The skill has a surface for indirect prompt injection because it processes external source code that could contain malicious instructions.
  • Ingestion points: Code changes retrieved via git diff in SKILL.md.
  • Boundary markers: No explicit delimiters or warnings are used to isolate the diff content.
  • Capability inventory: The skill only performs read-only git operations and generates reports; it does not have write or network permissions.
  • Sanitization: No sanitization or escaping of the code diff is performed before it is reviewed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 20, 2026, 12:06 PM
Security Audit — agent-trust-hub — implement-review