connection-pool-analyzer
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHPROMPT_INJECTIONCOMMAND_EXECUTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION] (HIGH): The skill defines a surface for indirect prompt injection. 1. Ingestion points: Data related to connection pool analysis. 2. Boundary markers: None present. 3. Capability inventory: 'Bash', 'Write', and 'Edit' tools allowed. 4. Sanitization: None described in the manifest.
- [COMMAND_EXECUTION] (LOW): The manifest requests access to the 'Bash' and 'Write' tools, which should be monitored for least-privilege compliance.
- [NO_CODE] (INFO): Analysis is limited to the SKILL.md file; no implementation scripts were provided.
Recommendations
- AI detected serious security threats
Audit Metadata