fuzz
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface because it ingest and analyzes untrusted data from local source code files to generate its output. There is a risk that malicious instructions embedded within the analyzed code (e.g., in comments or string literals) could influence the agent's behavior during payload generation.
- Ingestion points: Reads local source code files for API endpoint handlers, file parsers, CLI argument parsers, and message consumers.
- Boundary markers: None identified in the workflow instructions to differentiate between code and embedded instructions.
- Capability inventory: The skill has the capability to write generated JSON test cases to the local filesystem at the path
.appsec/fuzz/. - Sanitization: There are no specific instructions for sanitizing or escaping the content of the source code being analyzed before it is processed by the agent.
Audit Metadata