k6-script-generator
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Indirect Prompt Injection (LOW): The skill is susceptible to indirect prompt injection because it processes untrusted user-provided requirements to generate code and has access to high-privilege tools.
- Ingestion points: User requests for script generation patterns or best practices.
- Boundary markers: Absent from the skill definition.
- Capability inventory: Read, Write, Edit, Bash.
- Sanitization: No sanitization or validation logic is defined in the instruction set.
- Prompt Injection (SAFE): No instructions attempting to override agent behavior or bypass safety filters were detected.
- Data Exposure (SAFE): No hardcoded credentials or sensitive file paths were found.
- Remote Code Execution (SAFE): No external dependencies or remote script downloads are specified in the metadata or body.
Audit Metadata