semantic-bug-detector
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted external data in the form of code, comments, and documentation, which creates a surface for indirect prompt injection.
- Ingestion points: Untrusted data enters the agent context through user-provided code, comments, docstrings, and documentation strings as outlined in the detection workflow.
- Boundary markers: The skill lacks defined delimiters or explicit instructions for the agent to ignore instructions embedded within the analyzed content.
- Capability inventory: The skill's functionality is limited to static code analysis and reporting; it does not execute code, spawn subprocesses, write to the file system, or initiate network connections.
- Sanitization: No sanitization or escaping mechanisms are described for handling external content before it is processed for analysis.
Audit Metadata