tactical-ddd
Pass
Audited by Gen Agent Trust Hub on May 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides structural guidance for code analysis and refactoring without requesting unsafe permissions, performing network operations, or including obfuscated content.
- [INDIRECT_PROMPT_INJECTION]: The skill is designed to process user-provided code for analysis. While this introduces a potential surface for indirect prompt injection (e.g., via malicious instructions hidden in code comments), this is inherent to the skill's primary function of code review. The risk is considered minimal and acceptable within its intended use case, as the skill does not define or request dangerous capabilities such as arbitrary network access.
- Ingestion points: User-provided source code targeted for DDD review (referenced in SKILL.md).
- Boundary markers: Not explicitly defined in the instructions.
- Capability inventory: Code analysis and refactoring/editing of local files.
- Sanitization: None mentioned for the input source code.
Audit Metadata