Skills
skills/notlate-cn/code-reader-skills/code-reader-v2-cn/Gen Agent Trust Hub

code-reader-v2-cn

Pass

Audited by Gen Agent Trust Hub on Mar 29, 2026

Risk Level: SAFENO_CODEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [NO_CODE]: The skill is entirely comprised of markdown instructions and templates for an AI agent. It contains no executable scripts, binaries, or active code components.
  • [EXTERNAL_DOWNLOADS]: The instructions link to reputable academic research papers and educational resources (aft.org, wiley.com, science.org, refactoring.guru) to provide theoretical support for the code analysis process.
  • [SAFE]: No malicious patterns such as prompt injection, unauthorized data access, exfiltration, or persistence mechanisms were detected in the instruction files or the referenced zip archive.
  • [PROMPT_INJECTION]: The skill describes a framework for reading and analyzing external source code, which identifies an indirect prompt injection surface.
  • Ingestion points: Project source files read via file-reading tools.
  • Boundary markers: None specified in the instructions to delimit external content.
  • Capability inventory: Uses file-reading tools to process content.
  • Sanitization: No explicit sanitization or filtering of input code for embedded instructions is defined. This is considered safe as it is the core functionality of a code-reading assistant.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 29, 2026, 09:03 AM