systematic-debugging
Pass
Audited by Gen Agent Trust Hub on Mar 12, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill includes 'find-polluter.sh', a bash utility that identifies state-polluting tests by dynamically executing 'npm test' on files discovered through user-defined patterns.
- [PROMPT_INJECTION]: The systematic investigation process involves analyzing untrusted external data, which introduces an indirect prompt injection surface. 1. Ingestion points: The skill ingests error messages, stack traces, and system logs as primary data for root cause analysis (documented in SKILL.md and root-cause-tracing.md). 2. Boundary markers: The skill does not define explicit delimiters or instructions to ignore embedded commands within ingested logs or error messages. 3. Capability inventory: The agent has the capability to execute local shell scripts and test runners as part of the debugging workflow. 4. Sanitization: There is no evidence of automated sanitization or filtering of external data before it is processed by the agent's reasoning engine.
Audit Metadata