tiltup
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill invokes local development tools including tilt, tmux, git, and jq. These operations are core to the skill's purpose of managing a local dev environment and do not involve elevated permissions or suspicious command patterns.
- [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection through local repository content which it processes to diagnose errors. 1. Ingestion points: silo.toml, gen-env, Tiltfile, and tilt logs (referenced in SKILL.md). 2. Boundary markers: Absent. 3. Capability inventory: Local command execution via tmux and tilt. 4. Sanitization: Absent. This vulnerability is inherent to development automation tools and is mitigated by the user's control over the repository being processed.
Audit Metadata