file-search
Pass
Audited by Gen Agent Trust Hub on May 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides highly useful search patterns for auditing codebases for security risks, including hardcoded credentials (API keys, JWTs), AWS secrets, and dangerous function usage.
- [SAFE]: Tool access in the SKILL.md frontmatter is correctly scoped to the specific CLI utilities described in the documentation, following the principle of least privilege.
- [SAFE]: Guidance for remote context gathering (Jira, GitHub) is transparently documented as a handoff mechanism for when local search is insufficient.
- [SAFE]: No instances of prompt injection, data exfiltration, obfuscation, or unauthorized remote code execution were found across the analyzed files.
Audit Metadata