vulnerability-validation
Pass
Audited by Gen Agent Trust Hub on Apr 23, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection through its ingestion of external security scan data.
- Ingestion points: security-findings.json (SKILL.md).
- Boundary markers: Absent; the instructions do not provide explicit delimiters or directives to ignore instructions that might be embedded within the findings.
- Capability inventory: The skill's instructions involve reading context files, writing validated output, and executing jq for verification.
- Sanitization: Absent; there is no documented process for validating or escaping the content of the security findings before the agent processes them.
Audit Metadata