Skills
skills/cosmix/claude-code-setup/loom-ci-cd/Gen Agent Trust Hub

loom-ci-cd

Pass

Audited by Gen Agent Trust Hub on Apr 14, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: Potential for indirect prompt injection via untrusted repository content. The skill instructions require the agent to analyze project files and execute commands based on identified requirements.
  • Ingestion points: Processes repository data using Read, Grep, and Glob tools (SKILL.md).
  • Boundary markers: No specific delimiters or instructions to ignore embedded commands are provided for data ingestion.
  • Capability inventory: Possesses Bash for shell execution and Write/Edit for file modification (SKILL.md frontmatter).
  • Sanitization: No explicit sanitization or validation steps for content extracted from the project environment before it is used in command generation.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 14, 2026, 12:43 AM