checking-owasp-compliance
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill presents an indirect prompt injection surface as its core function involves analyzing external codebase files. This is an inherent risk for security analysis tools. \n
- Ingestion points: The script
scripts/owasp_scan.shand instructions inSKILL.mdinvolve reading and processing project files. \n - Boundary markers: No specific delimiters are defined in the instructions to isolate untrusted code from the agent's internal logic. \n
- Capability inventory: The agent is authorized to use
Bashtools with prefixes for security, scanning, and auditing. \n - Sanitization: No explicit content sanitization or validation of the ingested code is specified. \n- [SAFE]: The script
scripts/owasp_scan.shcontains Python code but uses a shell extension. It is a benign template for file traversal and basic processing.
Audit Metadata