f1-test-drive
Pass
Audited by Gen Agent Trust Hub on Mar 22, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill leverages local CLI tools and scripts (e.g.,
./f1,bun run apps/f1/server.ts) to manage the testing lifecycle. These operations are confined to the local environment and are intended for system validation. - [PROMPT_INJECTION]: The skill ingests untrusted data through issue titles and descriptions, which represents a potential surface for indirect prompt injection.
- Ingestion points: User-provided strings for title and description in the
create-issuecommand template in SKILL.md. - Boundary markers: Absent in the command templates.
- Capability inventory: Execution of local shell commands and scripts (Phase 1 through Phase 5) in SKILL.md.
- Sanitization: Absent in the skill instructions.
Audit Metadata