golang-error-handling

Pass

Audited by Gen Agent Trust Hub on May 22, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill's 'Audit mode' identifies a surface area for indirect prompt injection during the analysis of existing codebases.\n
  • Ingestion points: Source code is read from the local file system using the Grep and Read tools as described in SKILL.md.\n
  • Boundary markers: Absent. The instructions do not define specific delimiters or guidelines to isolate analyzed code from agent instructions.\n
  • Capability inventory: The skill utilizes restricted Bash commands and the Agent tool to execute sub-tasks based on the audit results.\n
  • Sanitization: Absent. The skill does not perform any validation or filtering of the code content before it is processed by the agent or sub-agents.\n- [COMMAND_EXECUTION]: The skill utilizes the Bash tool with strictly limited command prefixes (go:, golangci-lint:, git:*). These operations are consistent with standard development workflows and present minimal risk.\n- [EXTERNAL_DOWNLOADS]: The documentation references external libraries and resources, including samber/oops and various slog-related packages. All links point to reputable sources such as official GitHub repositories of the author and the Go standard library documentation.
Audit Metadata
Risk Level
SAFE
Analyzed
May 22, 2026, 04:57 PM
Security Audit — agent-trust-hub — golang-error-handling