bug-root-cause-finder
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions found that attempt to override system behavior or bypass safety guardrails.
- [Data Exposure & Exfiltration] (SAFE): No hardcoded credentials, sensitive file paths, or network exfiltration patterns were detected.
- [Obfuscation] (SAFE): No encoded content, zero-width characters, or homoglyphs were used to hide malicious intent.
- [Remote Code Execution] (SAFE): The skill references standard CLI tools like git and grep as part of a manual debugging workflow, with no automated or remote script execution.
- [Indirect Prompt Injection] (SAFE): The skill identifies surfaces for untrusted data ingestion (bug descriptions and stack traces in SKILL.md), uses markdown code blocks as boundary markers, and lacks high-privilege automated capabilities (subprocess calls/network writes) that could be exploited via these inputs.
Audit Metadata