har-debugger
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- PROMPT_INJECTION (LOW): The skill is susceptible to indirect prompt injection.
- Ingestion points: The skill ingests untrusted data from the 'har_file' (JSON entries and response bodies) and the 'bug_description' text input.
- Boundary markers: The workflow lacks explicit delimiters or instructions to ignore embedded commands within the processed data.
- Capability inventory: The skill is capable of reading local files from the disk to parse HAR data.
- Sanitization: There is no evidence of sanitization, escaping, or validation of the extracted HAR content before it is processed by the language model.
Audit Metadata