atlan-e2e-contract-validator
Pass
Audited by Gen Agent Trust Hub on Feb 24, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes a local Python script
../_shared/scripts/validate_e2e_case_contract.pyfor contract validation. This is part of the intended developer workflow for the 'atlanhq' environment and does not involve untrusted remote sources. - [PROMPT_INJECTION]: The skill processes
e2e_case_contract.yaml, which represents an indirect prompt injection surface. Ingestion points: e2e_case_contract.yaml. Boundary markers: Not present. Capability inventory: Local Python script execution. Sanitization: No explicit sanitization or input validation steps are described in the prompt instructions. This surface is evaluated as a low risk given the trusted context of the author and the specific testing use case.
Audit Metadata