codeflow-analyzer
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structured instructions for systematic code analysis using standard search and read operations (grep, glob, file read). These activities are consistent with the skill's stated purpose of reverse-engineering and documenting code flows.
- [DATA_EXFILTRATION]: While the skill reads codebase content and writes reports to local files (e.g.,
./codeflow-analysis.md), it does not contain any instructions for network transmission, external API calls, or unauthorized access to sensitive system files. - [COMMAND_EXECUTION]: The skill uses search utilities like grep to identify entry points and function calls. The execution is scoped to the codebase analysis task and does not involve arbitrary shell command injection or privilege escalation.
- [PROMPT_INJECTION]: The skill does not contain instructions that attempt to bypass safety filters or override agent constraints. The logic is focused on the technical analysis of source code.
Audit Metadata