networking-management
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill provides OCI CLI command templates in
SKILL.mdthat incorporate user-provided values such as CIDR blocks and OCIDs. Without explicit instructions for the agent to sanitize or validate these inputs, they represent a surface for indirect prompt injection. - Ingestion points: OCI CLI command placeholders in
SKILL.md(e.g.,<oci-services-cidr>,<sl1>). - Boundary markers: Absent; there are no instructions to the agent to treat interpolated data as untrusted or to ignore embedded instructions within that data.
- Capability inventory: The skill encourages the agent to perform resource management tasks using the
ociCLI. - Sanitization: No validation or escaping strategies are provided for handling user-supplied network configuration values.
- [EXTERNAL_DOWNLOADS]: The skill references various documentation links from official Oracle domains and well-known third-party technology blogs. These references are used for informational purposes and do not involve the execution of remote scripts.
- [SAFE]: No malicious code, obfuscation, hardcoded credentials, or persistence mechanisms were detected in the skill files. The technical advice provided follows standard cloud architecture best practices.
Audit Metadata