proto-http-api-from-input-ent
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The reference files include links to documentation and raw markdown files on the official vendor domain (
go-sphere.github.io) and GitHub repository (github.com/go-sphere). These are legitimate vendor resources used for providing technical context. - [COMMAND_EXECUTION]: The documentation includes informational commands for installing developer tools, such as
go install github.com/go-sphere/protoc-gen-sphere-errors@latest. These are user-facing instructions and are not executed by the AI agent during its operation. - [PROMPT_INJECTION]: The skill is designed to ingest and process user-provided requirement documents and directory structures.
- Ingestion points: SKILL.md identifies inputs from prompts, local folders, and requirement documentation.
- Boundary markers: Not explicitly defined in the provided instruction set.
- Capability inventory: The agent's capabilities are limited to generating code and documentation (Protobuf and JSON); it lacks any capability for arbitrary system command execution, file-system writes outside of response generation, or unauthorized network operations.
- Sanitization: No explicit validation or escaping of the user-provided business requirements is implemented within the instructions.
Audit Metadata