systematic-debugging
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill utilizes local shell commands including
cargo test,cargo run, andgit log. These are standard tools for Rust development and are used within the context of the project's own codebase and testing framework.\n- [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface through its use of subagents for codebase analysis.\n - Ingestion points: Subagents are tasked with reading local files, test fixtures, and git history as part of the investigation phase.\n
- Boundary markers: The instructions for subagents lack explicit delimiters or instructions to ignore embedded commands in the analyzed files.\n
- Capability inventory: The skill environment allows for local command execution via
cargoandgit.\n - Sanitization: No sanitization of the content from analyzed files is specified.\n
- Context: This analysis capability is the primary purpose of the skill and the risks are considered negligible in a standard development environment.
Audit Metadata