ssrf
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [SAFE]: The skill defines a legitimate security analysis workflow targeting SSRF vulnerabilities (CWE-918). It identifies relevant code patterns and follows OWASP Top 10 guidelines without any evidence of malicious behavior or data exfiltration.\n- [COMMAND_EXECUTION]: The skill executes trusted security scanners (Semgrep, Bandit, Gosec) via the command line to automate vulnerability detection. These operations are limited to the analysis of the provided source code and use standard tool configurations.\n- [PROMPT_INJECTION]: The skill is subject to an indirect prompt injection surface, as it ingests and processes untrusted source code during analysis.\n
- Ingestion points: Source code files identified within the target workspace (SKILL.md).\n
- Boundary markers: The skill does not use specific delimiters or instructions to isolate analyzed code from the model's core instructions.\n
- Capability inventory: The skill can read local files and execute specific shell commands for security scanning.\n
- Sanitization: No sanitization of code comments or content is performed before the analysis phase.\n
- Note: This surface is inherent to code analysis functionality and is not a result of malicious design.
Audit Metadata