js-ts-fp
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (HIGH): The skill is vulnerable to indirect prompt injection through the analysis of external codebases.
- Ingestion points: Processes project files including
.ts,.js,package.json, andtsconfig.jsonfrom potentially untrusted repositories. - Boundary markers: There are no instructions to delimit or ignore natural language instructions embedded within the code (e.g., in comments or strings).
- Capability inventory: The agent is authorized to write new code and refactor existing files based on its findings, creating a high-impact execution path for injected instructions.
- Sanitization: No sanitization or validation of the ingested code content is performed before it influences the agent's output logic.
Recommendations
- AI detected serious security threats
Audit Metadata