Skills
skills/d-o-hub/rust-self-learning-memory/ci-fix/Gen Agent Trust Hub

ci-fix

Pass

Audited by Gen Agent Trust Hub on Feb 21, 2026

Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
  • Prompt Injection (LOW): The skill is vulnerable to indirect prompt injection (Category 8) because it ingests untrusted data that could influence the agent's behavior. \n
  • Ingestion points: The skill reads CI logs using gh run view <run_id> --log --job <job_name> as specified in SKILL.md. \n
  • Boundary markers: None. The skill does not implement delimiters or instructions to ignore embedded commands within the log files. \n
  • Capability inventory: The skill executes cargo build, cargo test, and cargo clippy --fix, which involve code compilation and execution. \n
  • Sanitization: No sanitization or filtering is applied to the log data before it is processed by the agent. \n- Command Execution (SAFE): The skill uses standard Rust development commands (cargo) and the GitHub CLI (gh). These actions are consistent with the skill's stated purpose and do not represent malicious intent.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 21, 2026, 09:21 AM