qa-engineer
Pass
Audited by Gen Agent Trust Hub on Mar 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONREMOTE_CODE_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill generates and executes shell scripts in the
tests/qa/directory and utilizes system tools likecurl,grpcurl, andhttpieas described inreferences/README.md.\n- [REMOTE_CODE_EXECUTION]: The persona performs dynamic code execution by writing bash scripts to the filesystem and executing them after applyingchmod +x.\n- [EXTERNAL_DOWNLOADS]: The use ofcurlandhttpieenables the agent to interact with network services, which could include external remote resources.\n- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8). 1. Ingestion points: API responses fromcurlandgrpcurlcommands inreferences/README.md. 2. Boundary markers: None present. 3. Capability inventory: Execution of generated bash scripts and Git operations. 4. Sanitization: No evidence of response validation or sanitization before processing.
Audit Metadata