integration-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill fetches external source code by cloning discovered repositories from GitHub using the official GitHub CLI tool. This operation is central to its stated purpose of system discovery. GitHub is recognized as a well-known and trusted service for hosting repository content.
- [COMMAND_EXECUTION]: Shell commands including the GitHub CLI (gh) and filesystem utilities (dirname, bash) are utilized to locate repositories and manage local clones. These operations are within the scope of the skill's primary objective to map technical ecosystems.
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface because it ingests and profiles untrusted data from external repositories, configuration files, and documentation (Phases 0, 2, and 3). This data is then used to synthesize development stories and implementation plans. While the skill includes manual review modes, it lacks explicit boundary markers or sanitization logic to prevent adversarial instructions within the analyzed code from influencing the agent's output generation.
Audit Metadata