bug-to-patch-generator
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection through its ingestion of external, untrusted data.
- Ingestion points: The skill processes bug reports, failing test cases, error messages, and stack traces as primary inputs for patch generation.
- Boundary markers: There are no specified delimiters or 'ignore embedded instructions' markers to separate untrusted bug context from the agent's internal reasoning.
- Capability inventory: The skill generates executable code snippets (e.g., Python class logic, exception handling) which are intended to be integrated into codebases.
- Sanitization: No input validation or sanitization routines are defined to filter malicious instructions embedded within the bug context.
Audit Metadata