rails-security-review
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill includes instructions labeled 'HARD-GATE' to enforce specific output formatting and finding prioritization. These are standard instructional constraints used to standardize the agent's reporting structure and do not represent attempts to bypass safety filters or override system prompts.\n- [INDIRECT_PROMPT_INJECTION]: The skill's primary purpose is to analyze external Ruby on Rails source code, which creates a surface for indirect prompt injection where malicious instructions could be embedded in code comments or data processed by the agent.\n
- Ingestion points: Rails application source code files provided by the user for security review.\n
- Boundary markers: The skill does not define specific delimiters or instructions to treat untrusted code data differently from the agent's task instructions.\n
- Capability inventory: The skill focuses on text-based code analysis and report generation; it does not request or use capabilities such as network access, file system modification, or command execution, which significantly limits the potential impact of an injection.\n
- Sanitization: No input validation or sanitization is specified for the code being analyzed.
Audit Metadata