test-xcode
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the
xcodebuildmcptool from Sentry's official NPM or Homebrew repositories. - [COMMAND_EXECUTION]: Instructs the agent to perform standard iOS development tasks using
xcrun simctland theXcodeBuildMCPserver tools. - [PROMPT_INJECTION]: The skill ingests untrusted content via build and simulator logs (found in
SKILL.md; ingestion: build errors andget_sim_logstool outputs; boundaries: none; capabilities: simulator and app management; sanitization: none), presenting a surface for indirect prompt injection that is typical for diagnostic workflows.
Audit Metadata