android-security-best-practices
Pass
Audited by Gen Agent Trust Hub on Apr 6, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to execute shell commands, including 'python3 scripts/eval_triggers.py' and './gradlew :app:assembleDebug', to automate security reviews and build processes.
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection due to its handling of untrusted project data. 1. Ingestion points: Android manifest files, network security configurations, and application source code as described in 'SKILL.md'. 2. Boundary markers: Absent; no explicit delimiters or instructions separate project data from agent instructions. 3. Capability inventory: The skill has the ability to execute shell commands and Python scripts. 4. Sanitization: Absent; there is no evidence of input validation or sanitization for the project files being processed.
Audit Metadata