verify
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes local shell commands using standard Rust development tools including cargo, cargo-make, and nextest. These are used for project verification and testing.\n- [PROMPT_INJECTION]: The skill demonstrates an attack surface for indirect prompt injection by trusting the recommended_commands output from a local script without sanitization.\n
- Ingestion points: Output from the cargo make blast-radius command in SKILL.md.\n
- Boundary markers: Absent; the script output is treated as the source of truth.\n
- Capability inventory: Access to execute shell commands via the cargo toolchain.\n
- Sanitization: No validation or filtering is performed on the commands returned by the analysis script.
Audit Metadata