feature-builder
Pass
Audited by Gen Agent Trust Hub on Apr 7, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes platform-standard build and test tools such as
./gradlew,xcodebuild, andxcodebuild testduring Phase 4 and Phase 6 to verify feature implementations. This is a primary function of the orchestration pipeline. - [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it ingests untrusted user-provided feature descriptions and project files to drive a multi-agent generation pipeline.
- Ingestion points: User descriptions via the
/feature-buildcommand and existing project source files scanned in Phase 1. - Boundary markers: Not explicitly defined for the interpolation of user descriptions into agent prompts.
- Capability inventory: The pipeline has the capability to write new source files, modify existing configuration (e.g., AndroidManifest.xml, navigation graphs), and execute build commands.
- Sanitization: Not explicitly documented for input data processed by the planner agents.
- [EXTERNAL_DOWNLOADS]: The skill may modify dependency configuration files (e.g., version catalogs, build.gradle.kts, Package.swift) to add new libraries required for the feature implementation. These are standard package management operations for mobile development.
Audit Metadata