trace
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious findings were detected. The skill utilizes allowed tools such as grep and find to navigate the codebase for the legitimate purpose of understanding software architecture.
- [PROMPT_INJECTION]: The skill features an indirect prompt injection surface because it reads and processes source code from external files.
- Ingestion points: Project source code is read from the filesystem using the Read tool and grep output as described in Step 3 of SKILL.md.
- Boundary markers: No specific boundary markers or 'ignore' instructions are used to separate the ingested code from the agent's operational logic.
- Capability inventory: The skill uses Read, Bash (grep, find), and WebSearch.
- Sanitization: There is no evidence of sanitization or validation of the content read from files.
Audit Metadata