role-builder
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- SAFE (SAFE): The skill provides structured documentation and templates for Ansible role development. All identified command-line instructions (e.g.,
ansible-galaxy,mkdir) are standard practices for the stated purpose of organizing automation tasks. - Indirect Prompt Injection (LOW): The skill establishes a framework where an agent generates automation scripts based on user input. While this creates a surface for potential injection if a user provides malicious task descriptions, it is the primary intended function of a role builder and is mitigated by the context of configuration management documentation. (Evidence Chain: 1. Ingestion points: User-defined role parameters in SKILL.md templates. 2. Boundary markers: Absent in the provided templates. 3. Capability inventory: Ansible command and file modules mentioned in reference/role-structure.md. 4. Sanitization: Absent in the templates; dependent on the final execution environment).
Audit Metadata