rust-review
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill performs code analysis by executing local cargo commands. Evidence:
modules/cargo-dependencies.mdinstructs the agent to runcargo tree -d,cargo audit,cargo outdated, andcargo deny checkto analyze dependencies and security vulnerabilities. - [EXTERNAL_DOWNLOADS]: The skill initiates downloads of security advisories from established services. Evidence: The
cargo auditcommand inmodules/cargo-dependencies.mdfetches the RustSec advisory database, which is a well-known and expected service for this audit function. - [PROMPT_INJECTION]: The skill's architecture is vulnerable to indirect prompt injection because it processes external code. Ingestion points: Rust source code and 'Cargo.toml' files analyzed in 'SKILL.md' and modules. Boundary markers: No explicit isolation or instructions for the agent to ignore embedded instructions in analyzed content. Capability inventory: Execution of cargo CLI tools for project analysis. Sanitization: No sanitization of the untrusted code inputs is performed before processing.
Audit Metadata