systematic-debugging
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION] (SAFE): The skill uses strong instructional language to enforce a technical debugging methodology. These behavioral constraints do not attempt to bypass safety filters or extract system prompts.
- [COMMAND_EXECUTION] (SAFE): The
find-polluter.shscript executesnpm teston local files to identify environmental side effects. This is a standard diagnostic function for developers. - [INDIRECT_PROMPT_INJECTION] (LOW): The skill contains a utility that executes external test code, creating a surface for indirect prompt injection. 1. Ingestion points: The
find-polluter.shscript executes files matching a pattern provided as a command-line argument. 2. Boundary markers: No delimiters or warnings are used to prevent the agent from following instructions embedded in the test files. 3. Capability inventory: The script has the capability to execute code vianpm test. 4. Sanitization: There is no sanitization or validation of the test files before execution.
Audit Metadata