Skills
skills/kentoshimizu/sw-agent-skills/api-versioning/Gen Agent Trust Hub

api-versioning

Pass

Audited by Gen Agent Trust Hub on Feb 28, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill instructs the agent to execute a local Python script (python3 ../api-design-rest/scripts/validate_api_contract.py --manifest <path/to/manifest.json>) to perform manifest validation.
  • [PROMPT_INJECTION]: The skill exhibits a vulnerability to indirect prompt injection due to the way it processes external data.
  • Ingestion points: Untrusted data enters the agent context through the 'Current API surface' and 'Change classification' inputs provided by the user or external files.
  • Boundary markers: The prompt lacks explicit delimiters or instructions to ignore embedded commands within the ingested API surface data.
  • Capability inventory: The skill has the capability to execute shell commands (python3).
  • Sanitization: No sanitization, escaping, or schema validation is defined for the input data before it influences the agent's workflow.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 28, 2026, 08:38 PM