code-review-orchestrating
Pass
Audited by Gen Agent Trust Hub on Mar 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a high-level orchestrator that routes tasks to other specialist agents. It follows a structured process for code analysis and reporting without any evidence of malicious instructions or bypass attempts.
- [DATA_EXPOSURE]: The skill generates reports and saves them to a local file system path (
code_review_reports/full/) using thecreate_filetool. This is a legitimate and transparent use of the environment for persistent logging of results. - [COMMAND_EXECUTION]: No direct shell command execution or unauthorized system calls were identified. The use of specialized agents (
security-agent, etc.) is handled within the platform's orchestration framework. - [PROMPT_INJECTION]: While the skill processes user-supplied code (indirect prompt injection surface), it provides a clear reporting template and behavioral norms that help maintain focus on the intended review task.
Audit Metadata