integration-test
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes the Bash tool to execute system commands, including 'git diff' to detect file changes and 'dotnet build' to verify the integrity of generated test projects (SKILL.md).- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection because it processes untrusted data from the local repository (code and documentation) and possesses capabilities to write files and execute build commands.
- Ingestion points: The skill reads git diff outputs, service source files (*Command.cs, *Query.cs), and business feature documentation (docs/business-features/).
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands are present when the agent reads external file content.
- Capability inventory: The agent has access to Write, Edit, and Bash tools, allowing it to modify the codebase and execute build scripts based on ingested data.
- Sanitization: The skill instructions do not specify any sanitization or validation of the content read from files before processing it.
Audit Metadata