Skills
skills/marcoax/skills/improve-codebase-architecture/Gen Agent Trust Hub

improve-codebase-architecture

Pass

Audited by Gen Agent Trust Hub on Apr 11, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • [PROMPT_INJECTION]: The skill demonstrates an indirect prompt injection surface as it processes untrusted codebase data to generate external GitHub issue content. \n
  • Ingestion points: Codebase files are accessed and analyzed by sub-agents to identify refactoring candidates. \n
  • Boundary markers: No specific delimiters or instructions are provided to help the agent distinguish between code and potentially malicious embedded instructions. \n
  • Capability inventory: The skill utilizes the gh issue create command to publish information to an external platform. \n
  • Sanitization: The skill does not mention any validation or sanitization of data harvested from the codebase before it is used to populate templates. \n- [COMMAND_EXECUTION]: Uses the gh command-line tool for GitHub integration. \n
  • The instructions explicitly skip user review before final execution ("Do NOT ask the user to review before creating"), which reduces oversight for automated write operations to external services.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 11, 2026, 06:50 AM
Security Audit — agent-trust-hub — improve-codebase-architecture