vulnerability-scanner
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): A vulnerability surface exists because the skill is designed to ingest and process untrusted external files while having access to high-privilege tools. Mandatory Evidence Chain: 1. Ingestion points: External source code and files processed via Read, Glob, and Grep tools. 2. Boundary markers: Absent; no delimiters or ignore-instructions warnings are provided to separate data from commands. 3. Capability inventory: Access to Bash for arbitrary command execution, plus file system operations via Read and Glob. 4. Sanitization: No evidence of input validation or content filtering is present in the provided instructions.
- [No Code] (SAFE): No executable scripts or binary files were included in the provided skill components; the referenced scripts/security_scan.py was not present for analysis.
Audit Metadata