validating-a-change
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes shell commands including git diff and make format to inspect the repository state and apply formatting rules as part of the validation process.
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it reads and processes untrusted data (code diffs) which is then passed to other analysis subagents.
- Ingestion points: Code changes retrieved via git diff and user-provided goal/issue metadata are used to construct prompts for subagents.
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands within the diff content are specified in the orchestration.
- Capability inventory: The skill triggers git, make, and multiple secondary skills (low-level-code-review, high-level-code-review, adding-tests, running-tests) which perform file system and execution tasks.
- Sanitization: No sanitization of the code diff content is performed before it is interpolated into subagent instructions.
Audit Metadata