check-all-components-design

Pass

Audited by Gen Agent Trust Hub on May 13, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is designed to audit local source code for design anti-patterns. While it accesses local files in 'src/components/' and 'src/features/', this behavior is consistent with its stated purpose of performing code reviews. No network operations, credential harvesting, or unauthorized command executions were detected.
  • [DATA_EXPOSURE]: The skill reads from local source code directories. However, this is limited to project-specific component files for the purpose of design analysis and does not involve accessing sensitive system configuration files or environment variables.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes untrusted data (source code) that could theoretically contain malicious instructions in comments intended to subvert the audit. While this represents a potential attack surface, the capabilities of this specific skill are limited to generating reports, which minimizes the overall risk.
Audit Metadata
Risk Level
SAFE
Analyzed
May 13, 2026, 11:54 AM
Security Audit — agent-trust-hub — check-all-components-design