configure-makefile
Pass
Audited by Gen Agent Trust Hub on Apr 21, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses dynamic context injection to gather environment information at load time. * Evidence: SKILL.md contains !pwd, !find, and !grep commands to detect project files and existing Makefile targets. * Analysis: These are benign discovery commands used to determine project configuration.
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by processing untrusted project files. * Ingestion points: Reads Makefile, package.json, pyproject.toml, and other config files. * Boundary markers: Absent. * Capability inventory: Write, Edit, and TodoWrite tools for modifying project files. * Sanitization: Absent.
Audit Metadata