review-code
Pass
Audited by Gen Agent Trust Hub on May 26, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill employs standard developer tools (
git,gh) for read-only repository inspection and diff calculation, which is appropriate for its stated purpose. - [SAFE]: It contains rigorous safety instructions that forbid destructive actions, such as editing files, staging changes, or performing operations that mutate the worktree or repository state.
- [SAFE]: The architecture mandates 'Fresh Reviewer Dispatch,' ensuring that the processing of untrusted data (git diffs) occurs in an isolated sub-agent context, which mitigates risks of indirect prompt injection.
- [SAFE]: Explicit instructions are provided to prevent the agent from reading, requiring, or inferring secrets during the review process.
Audit Metadata