bug-reproduction-test-generator
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: This skill has a surface for Indirect Prompt Injection.\n
- Ingestion points: The agent ingests data from external 'issue reports' and 'code repositories'.\n
- Boundary markers: The instructions do not provide delimiters to distinguish between system instructions and untrusted input data.\n
- Capability inventory: The agent is capable of generating code and is specifically instructed to 'Run the test' using system tools (e.g., pytest, jest).\n
- Sanitization: There is no instruction to sanitize or validate the content of the issue reports before code generation.\n- [COMMAND_EXECUTION]: The skill directs the agent to execute code produced from untrusted inputs.\n
- Evidence: In the 'Tips' section, the agent is told to 'Run the test to confirm it reproduces the bug'. This could lead to the execution of malicious logic if an attacker crafts an issue report with embedded commands.
Audit Metadata