ci-fix
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute various build and linting commands such as 'cargo clippy --fix', 'cargo audit', and a local repository script './scripts/code-quality.sh'. These are standard development operations but require the agent to have execution capabilities.\n- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface by ingesting external data from CI logs.\n
- Ingestion points: CI logs retrieved via 'gh run view' in 'SKILL.md'.\n
- Boundary markers: Absent. The instructions do not specify delimiters to isolate external log content from the agent's internal instruction set.\n
- Capability inventory: The skill possesses the capability to run shell commands, interact with the 'gh' CLI, and execute build/test tools via 'cargo'.\n
- Sanitization: Absent. There is no mention of filtering or sanitizing log data before processing it.
Audit Metadata