acquire-codebase-knowledge
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses a Python script (
scripts/scan.py) to executegitcommands viasubprocess.runfor repository discovery, including commit history and file churn analysis. These calls are implemented using structured argument lists rather than shell strings, which is a safe practice that prevents command injection. - [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it is designed to ingest and summarize untrusted data from the codebase being documented.
- Ingestion points: Project manifests (e.g., package.json), source code files, and git logs read during the discovery phase.
- Boundary markers: Absent; there are no specific delimiters or instructions to ignore malicious directives that might be embedded in the scanned code.
- Capability inventory: The agent has the ability to execute git commands and write files to the local filesystem.
- Sanitization: None; content from project files is directly processed and summarized into documentation templates.
Audit Metadata