envoy-proxy-config
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill triggers on user-provided strings and has access to powerful tools (Bash, Write). This represents a vulnerability surface for indirect prompt injection.
- Ingestion points: Processes user requests containing keywords like 'envoy proxy config'.
- Boundary markers: None defined to separate user data from system instructions.
- Capability inventory: Allowed-tools include Bash, Read, Write, Edit, and Grep, allowing for significant system interaction.
- Sanitization: No explicit sanitization or validation of the input data is described in the skill definition.
- [Metadata] (SAFE): Metadata fields (name, author, description) are consistent with the skill's stated purpose and do not contain deceptive instructions.
- [No Code] (SAFE): No scripts, binaries, or executable configuration files were provided with this skill definition.
Audit Metadata