Skills
skills/rshade/agent-skills/tech-debt/Gen Agent Trust Hub

tech-debt

Pass

Audited by Gen Agent Trust Hub on Apr 22, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes shell commands and development tools such as git, find, go test, pytest, npx jest, and gh api to gather project metrics and test coverage data. These operations are conducted locally and align with the skill's purpose of analyzing project health.
  • [PROMPT_INJECTION]: The skill creates a surface for indirect prompt injection by ingesting and analyzing various parts of a repository, including documentation and code comments.
  • Ingestion points: Codebase files (SKILL.md, references/analysis-patterns.md)
  • Boundary markers: Absent
  • Capability inventory: Shell command execution (git, go, pytest, npx, gh) and file system write access for report generation
  • Sanitization: Absent
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 22, 2026, 09:59 AM