latex-fix-compilation
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted data from repository files.
- Ingestion points: The skill reads LaTeX error logs (.errlog) and source files (.tex) using cat and find in SKILL.md.
- Boundary markers: No explicit boundary markers or instructions to ignore embedded commands are present in the instructions.
- Capability inventory: The skill can execute shell commands including git pull, git push, rm, find, and gh.
- Sanitization: No sanitization or validation is performed on the log content or source files before the agent analyzes them.
- [COMMAND_EXECUTION]: The skill relies on executing shell commands to perform its tasks. These commands (git, find, rm, gh) are standard for development but could be targeted if an indirect prompt injection attack succeeds in influencing the agent's logic.
Audit Metadata