check-props-drilling
Pass
Audited by Gen Agent Trust Hub on May 13, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill instructions and reference materials are exclusively focused on architectural improvements for frontend code quality.
- [INDIRECT_PROMPT_INJECTION]: Analyzed as a potential attack surface because the skill is designed to process and analyze user-supplied code files.
- Ingestion points: User-provided React source files (.tsx) are read into the context for analysis.
- Boundary markers: None explicitly defined in the instructions to isolate the code being analyzed from the agent's internal instructions.
- Capability inventory: The skill primarily utilizes file reading and text generation capabilities; no high-risk capabilities such as network exfiltration, arbitrary shell execution, or system modification are requested or used.
- Sanitization: No explicit sanitization or filtering of the input code is defined, which is typical for static analysis assistants but noted as a potential surface for indirect injection if malicious code is processed.
Audit Metadata