finish
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to run typst compilation and execute Python scripts. These actions are directly tied to the primary goal of document finalization and code verification.
- [PROMPT_INJECTION]: The skill ingests untrusted data by reading files specified in arguments, creating an indirect prompt injection surface. Ingestion points: File content read via the Read tool in Phase 1 and Phase 2. Boundary markers: None specified in the instructions. Capability inventory: Use of Bash, Edit, and Write tools to modify files and execute commands. Sanitization: No specific validation or sanitization of input file content is performed prior to the review and fix phases.
Audit Metadata