ln-643-api-contract-auditor
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADSCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: Indirect prompt injection surface detected.\n
- Ingestion points: The skill ingests untrusted code from the target codebase using Glob, Grep, and Read tools during its discovery and analysis phases as described in SKILL.md.\n
- Boundary markers: No explicit boundary markers or instructions to ignore embedded commands are present to separate instructions from the ingested source code.\n
- Capability inventory: The skill has access to the Bash tool for execution and performs file writing to generate reports, creating a pathway for potentially malicious instructions in source code to influence agent behavior.\n
- Sanitization: The skill lacks explicit sanitization or validation mechanisms for the content it reads from the external codebase before processing.\n- [EXTERNAL_DOWNLOADS]: The diagram.html file loads the Mermaid.js library from the JSDelivr CDN (cdn.jsdelivr.net). This is documented as a reference to a well-known and trusted service.\n- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute pattern-matching commands (Grep and Glob) for its auditing functionality. While these are part of its primary purpose, the broad availability of the Bash tool is noted.
Audit Metadata