golang-error-handling
Pass
Audited by Gen Agent Trust Hub on May 22, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill's 'Audit mode' identifies a surface area for indirect prompt injection during the analysis of existing codebases.\n
- Ingestion points: Source code is read from the local file system using the Grep and Read tools as described in SKILL.md.\n
- Boundary markers: Absent. The instructions do not define specific delimiters or guidelines to isolate analyzed code from agent instructions.\n
- Capability inventory: The skill utilizes restricted Bash commands and the Agent tool to execute sub-tasks based on the audit results.\n
- Sanitization: Absent. The skill does not perform any validation or filtering of the code content before it is processed by the agent or sub-agents.\n- [COMMAND_EXECUTION]: The skill utilizes the Bash tool with strictly limited command prefixes (go:, golangci-lint:, git:*). These operations are consistent with standard development workflows and present minimal risk.\n- [EXTERNAL_DOWNLOADS]: The documentation references external libraries and resources, including samber/oops and various slog-related packages. All links point to reputable sources such as official GitHub repositories of the author and the Go standard library documentation.
Audit Metadata