imperative-to-coq-model-extractor
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is designed to analyze and translate user-provided imperative code, creating a surface for indirect prompt injection where malicious instructions could be embedded in the input code to influence agent behavior. * Ingestion points: The extraction workflow in SKILL.md processes various imperative languages (C, C++, Python, Java) provided by the user. * Boundary markers: The skill does not define specific delimiters or security instructions to prevent the agent from obeying natural language commands hidden within the source code. * Capability inventory: The skill suggests the execution of the coqc compiler for verification. * Sanitization: There are no sanitization or validation procedures defined for the input source code before processing.
- [COMMAND_EXECUTION]: Step 5 of the workflow in SKILL.md recommends running the coqc compiler command on generated files. Suggesting the execution of command-line tools based on content derived from untrusted user input represents a potential security risk.
Audit Metadata