rate-limiting-apis
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill ingests untrusted data from external sources which could potentially contain hidden instructions.
- Ingestion points: Reads API specifications from
{baseDir}/api-specs/. - Boundary markers: No specific delimiters or 'ignore instructions' warnings are provided in the instructions.
- Capability inventory: The skill allows file system access (Read, Write, Edit, Grep, Glob) and restricted command execution via
Bash(api:ratelimit-*). - Sanitization: There is no evidence of input validation or escaping for the data read from the specifications.
Audit Metadata