comprehensive-code-review
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a robust staff engineer orchestration pattern for code reviews. It correctly utilizes parallel sub-agents to provide independent, unbiased analysis across specialized dimensions, including a dedicated security reviewer focusing on OWASP vulnerabilities and SSRF. Shell command usage is limited to standard repository inspection and context gathering with
gitandgh.\n- [PROMPT_INJECTION]: The skill processes untrusted content from code diffs and GitHub Pull Request metadata, which constitutes a surface for indirect prompt injection.\n - Ingestion points: Untrusted data enters the agent context via
git diffoutput andgh pr viewresults (PR title and body).\n - Boundary markers: Present. The orchestrator uses structured Markdown headers (e.g.,
## What Was Changed,## Requirements/Plan) within the sub-agent prompts to delimit untrusted content from the review instructions.\n - Capability inventory: The skill facilitates reading repository files, executing context-gathering shell commands, and dispatching secondary agents.\n
- Sanitization: Absent. The skill does not sanitize or filter the PR descriptions or code diffs before interpolation into the sub-agent prompts.
Audit Metadata