reverse-document
Pass
Audited by Gen Agent Trust Hub on Apr 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious patterns or significant security risks were identified. The skill operates locally on the source code provided by the user and follows its stated purpose of documentation generation.
- [COMMAND_EXECUTION]: The skill instructs the agent to execute
git log --onelineto retrieve version history for architectural context. This command execution is appropriate for the skill's primary function and is limited to reading metadata from the local repository. - [PROMPT_INJECTION]: The skill identifies a surface for indirect prompt injection as it ingests untrusted content from source code comments (Ingestion points: SKILL.md workflow). While it does not use explicit boundary delimiters (Boundary markers: absent), it provides clear instructions to avoid speculation and only document verifiable implementation details, and it relies on file-read and git-view capabilities (Capability inventory: File access, Git commands) with a sanitization strategy rooted in strict adherence to code evidence (Sanitization: direct evidence requirement).
Audit Metadata