security-testing
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill exposes a surface for indirect prompt injection by processing results from untrusted external scan targets.\n
- Ingestion points: The DAST scanner in 'references/owasp-zap-dast.md' fetches alert data from external sites via the ZAP API.\n
- Boundary markers: Absent. The scanner prints alert descriptions and solutions directly to the agent's context without delimiters or instruction isolation.\n
- Capability inventory: Subprocess execution (via CLI examples), network operations (DAST scanner), and file-writing ('scripts/security-checklist.sh').\n
- Sanitization: Absent. No sanitization or filtering is performed on untrusted alert data before it is included in the reporting output.\n- [EXTERNAL_DOWNLOADS]: The skill references trusted security tools and GitHub Actions.\n
- References 'zaproxy/action-baseline' and 'snyk/actions/node' for automated security workflows.\n
- Provides instructions for installing standard tools such as 'detect-secrets' and 'safety' from official package registries.\n- [COMMAND_EXECUTION]: Provides utility scripts and command-line examples for security auditing.\n
- Includes 'scripts/security-checklist.sh' which writes markdown content to a user-defined or default path.\n
- Documents the use of CLI tools for auditing repository history and dependencies, such as 'trufflehog' and 'git secrets'.
Audit Metadata