review-code
Pass
Audited by Gen Agent Trust Hub on Jun 21, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as an instructional framework for code review, emphasizing code health, design, and security best practices.
- [COMMAND_EXECUTION]: The skill instructs the agent to retrieve code context using standard
git diffcommands. These commands are necessary for the skill's primary function of reviewing code changes and do not represent a security risk in this context. - [SAFE]: While static analysis tools flagged the use of
evalwith user input, a manual review confirms that these instances are located within documentation as negative examples. They are intended to teach the agent to identify and flag insecure code during reviews rather than being instructions for the agent to execute.
Audit Metadata