design-critique
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exposes an indirect prompt injection surface.
- Ingestion points: The skill reads local files and codebase content using Read, Grep, and Glob tools in SKILL.md to provide context for critiques.
- Boundary markers: No explicit delimiters or instructions are used to separate untrusted file content from the agent's core instructions.
- Capability inventory: The skill is restricted to file system reading (Read, Grep, Glob) and has no network or write access.
- Sanitization: No sanitization or filtering of file content is performed prior to processing.
Audit Metadata