baseline-security-audit
Pass
Audited by Gen Agent Trust Hub on Mar 17, 2026
Risk Level: SAFE
Full Analysis
- [INDIRECT_PROMPT_INJECTION]: The skill processes external codebase content (untrusted data) to identify security vulnerabilities. A maliciously crafted codebase could contain payloads designed to influence the agent's interpretation of findings or manipulate the automated creation of Jira stories.
- Ingestion points: Codebase files (source code, configuration files, and package manifests) are read during the audit process.
- Boundary markers: Absent. The instructions do not specify the use of clear delimiters or instructions to ignore embedded commands within the audited files.
- Capability inventory: The skill utilizes the
create_issuetool to transmit finding details, including file paths and code snippets, to an external Jira instance. - Sanitization: Absent. There is no explicit requirement to sanitize or escape data extracted from the codebase before it is interpolated into the Jira story summary or description.
Audit Metadata