nautobot-sot
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface identified in the processing of external IPAM data.
- Ingestion points: Data is retrieved from the Nautobot API through tools like get_ip_addresses, get_prefixes, and search_ip_addresses, which include fields like hostnames and descriptions.
- Boundary markers: The instructions do not define boundary markers or instruct the agent to ignore instructions within the retrieved metadata.
- Capability inventory: All tools in this skill are read-only; however, the agent's broader context may include tools with write or execute permissions.
- Sanitization: No sanitization or validation of strings returned by the API is mentioned.
Audit Metadata