review
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes
git diffandgit logto retrieve code changes and commit history for analysis. This is standard and necessary functionality for its stated purpose. - [DATA_EXFILTRATION]: The skill reads local project files including
CLAUDE.md,CONTRIBUTING.md, and various configuration files (e.g.,.editorconfig,eslint.config.*) to identify coding standards. This data remains within the agent's context for analysis and is not sent to external or untrusted domains. - [REMOTE_CODE_EXECUTION]: The skill utilizes a
general-purposesub-agent tool to process code analysis in parallel. This is an internal architectural pattern and does not involve downloading or executing untrusted code from the internet. - [PROMPT_INJECTION]: The prompts provided to the sub-agents are structured for analysis ("Read the standards docs. Then read the diff...") and do not attempt to bypass safety filters or override the system prompt.
Audit Metadata