canary-deployment-setup
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill facilitates machine learning deployment tasks using privileged tools (Bash, Write, Edit). While no malicious intent is present in the skill itself, the combination of tool access and the ingestion of deployment configurations creates a potential surface for indirect prompt injection if processing untrusted external inputs.
- Ingestion points: User-provided deployment parameters and existing system configuration files.
- Boundary markers: No specific delimiters or safety instructions regarding untrusted data are defined in the skill body.
- Capability inventory: Access to Bash execution, file reading, writing, and editing.
- Sanitization: No sanitization or input validation logic is present in the static skill definition.
- [SAFE] (SAFE): No evidence of direct prompt injection, credential exfiltration, obfuscation, or unauthorized remote downloads was detected in the skill metadata or text instructions.
Audit Metadata