check-props-drilling

Pass

Audited by Gen Agent Trust Hub on May 13, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill instructions and reference materials are exclusively focused on architectural improvements for frontend code quality.
  • [INDIRECT_PROMPT_INJECTION]: Analyzed as a potential attack surface because the skill is designed to process and analyze user-supplied code files.
  • Ingestion points: User-provided React source files (.tsx) are read into the context for analysis.
  • Boundary markers: None explicitly defined in the instructions to isolate the code being analyzed from the agent's internal instructions.
  • Capability inventory: The skill primarily utilizes file reading and text generation capabilities; no high-risk capabilities such as network exfiltration, arbitrary shell execution, or system modification are requested or used.
  • Sanitization: No explicit sanitization or filtering of the input code is defined, which is typical for static analysis assistants but noted as a potential surface for indirect injection if malicious code is processed.
Audit Metadata
Risk Level
SAFE
Analyzed
May 13, 2026, 11:54 AM
Security Audit — agent-trust-hub — check-props-drilling