bug-fixer
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection. It is designed to ingest and process untrusted external data such as bug tickets, user error reports, and logs. An attacker could craft a bug report containing hidden instructions instead of a defect description to influence the agent's behavior during the 'Diagnose' or 'Execute' phases.
- Ingestion points: SKILL.md (processes bug tickets, error reports, and unexpected behavior reports).
- Boundary markers: None detected. The instructions do not explicitly warn the agent to treat input data as untrusted or to ignore embedded commands.
- Capability inventory: Writing and suggesting code modifications, updating documentation via 'Context Brain' (SKILL.md).
- Sanitization: None detected. The skill lacks explicit validation or filtering logic for the content of processed bug reports.
Audit Metadata