stack-compatibility-oracle
Pass
Audited by Gen Agent Trust Hub on Mar 19, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from project configuration files and design documents, creating a surface for indirect prompt injection.
- Ingestion points: The skill instructs the agent to gather information from
package.json,Dockerfile,IaC configs, and documents located in directories such as/brainstormingor/ddia-design. - Boundary markers: No explicit delimiters or instructions are provided to help the agent distinguish its internal logic from instructions potentially embedded within the files being analyzed.
- Capability inventory: The skill is limited to architectural reasoning and outputting a text-based compatibility report; it does not utilize capabilities for network communication, command execution, or file system modification.
- Sanitization: There is no evidence of content validation or sanitization performed on the ingested file data before it is processed by the agent.
Audit Metadata