cmd-review
Pass
Audited by Gen Agent Trust Hub on Apr 27, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted code via the {{INPUT}} placeholder. This creates a surface for indirect prompt injection, where instructions embedded in the code being reviewed could attempt to influence the agent's behavior.
- Ingestion points: The {{INPUT}} variable in SKILL.md receives external content for processing.
- Boundary markers: No delimiters or specific instructions are provided to separate user-provided content from the skill's instructions.
- Capability inventory: No dangerous capabilities like command execution, network access, or file system modifications are present in the skill source.
- Sanitization: The skill does not perform any validation or escaping of the input content before it is processed.
Audit Metadata