Skills
skills/arman-kudaibergenov/1c-ai-development-kit/meta-compile/Gen Agent Trust Hub

meta-compile

Pass

Audited by Gen Agent Trust Hub on Mar 5, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes a local PowerShell script (meta-compile.ps1) to handle the conversion of JSON data into 1C metadata formats. This execution is confined to the local environment and is necessary for the tool's core functionality.
  • [PROMPT_INJECTION]: The skill processes user-provided JSON input, which constitutes an indirect prompt injection surface (Category 8).
  • Ingestion points: The script reads user-provided metadata definitions from a JSON file specified in the arguments.
  • Boundary markers: None provided in the script logic.
  • Capability inventory: The script creates multiple directories and files (.xml, .bsl) and modifies an existing configuration file (Configuration.xml).
  • Sanitization: The script uses a dedicated Esc-Xml function to escape special characters (e.g., &, <, >) in user-provided strings before they are embedded in XML files, mitigating the risk of XML injection.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 5, 2026, 11:22 PM