simulation-validator
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): The skill possesses a surface for indirect prompt injection through its data ingestion processes.
- Ingestion points: Untrusted data enters the agent context via
simulation.log,simulation.json, andresults.json. - Boundary markers: No explicit boundary markers or delimiters are defined in the CLI calls to prevent the agent from interpreting file contents as instructions.
- Capability inventory: The skill utilizes
Bashto executescripts/preflight_checker.py,scripts/runtime_monitor.py,scripts/result_validator.py, andscripts/failure_diagnoser.py, and hasWriteaccess to the filesystem. - Sanitization: The skill relies on regex-based parsing of log files, which may not sufficiently sanitize malicious natural language instructions embedded within the processed data.
- COMMAND_EXECUTION (SAFE): Bash usage is confined to executing local diagnostic Python scripts, which is consistent with the skill's primary purpose and requirements.
Audit Metadata