api-error-handling
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill references the execution of a local Python script located at '../api-design-rest/scripts/validate_api_contract.py' for manifest validation. This is a standard utility command within the context of API design governance and operates on local file paths.
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface because it processes external inputs such as API status behavior and consumer assumptions. Malicious instructions could potentially be embedded in these inputs; however, the skill's workflow is focused on structural design rather than executing untrusted data.
Audit Metadata