memory-safety-analyst
Pass
Audited by Gen Agent Trust Hub on Mar 9, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to ingest and process untrusted external data, which creates a surface for indirect prompt injection attacks.
- Ingestion points: The workflow accepts external data via the
target_context(binary or source) andcrash_data(trace, core, sanitizer output) inputs as defined in SKILL.md. - Boundary markers: The prompt instructions do not include explicit delimiters or instructions to ignore instructions embedded within the provided data artifacts, which could allow an attacker to influence the agent's behavior.
- Capability inventory: The skill is purely analytical and does not include code or tools for file system modification, command execution, or network communication.
- Sanitization: There are no specified mechanisms for the validation or sanitization of input data before it is incorporated into the analysis process.
Audit Metadata