backend-go-linter
Pass
Audited by Gen Agent Trust Hub on Apr 8, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill incorporates a strong security posture by enabling linters like gosec for static application security testing and bodyclose, sqlclosecheck, and rowserrcheck for detecting resource and connection leaks.
- [SAFE]: It provides built-in defenses against 'Trojan Source' attacks and character-based obfuscation by enforcing the bidichk and asciicheck linters.
- [COMMAND_EXECUTION]: Shell command execution is restricted to a safe subset of necessary tools including go, golangci-lint, and git, which prevents the execution of unapproved or potentially malicious commands.
- [PROMPT_INJECTION]: The skill processes project source code and configuration files, creating a surface for indirect prompt injection. This risk is effectively managed through restricted tool access and the skill's specific focus on structured code analysis.
Audit Metadata