generate-dto
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill reads existing entity classes from the local file system, which creates a surface for indirect prompt injection if those files contain malicious instructions in comments or metadata.
- Ingestion points: Source code files located in
*.Domain/Entities/. - Boundary markers: The skill lacks explicit delimiters or instructions to ignore embedded prompts within the ingested entity files.
- Capability inventory: The agent has the capability to read from and write to the local file system to facilitate code generation.
- Sanitization: No sanitization or validation of the extracted entity properties or content is performed before processing.
- [SAFE]: No other security concerns such as hardcoded credentials, malicious network activity, or remote code execution were detected in the skill logic.
Audit Metadata