ln-770-crosscutting-setup
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE]: The skill performs localized file system discovery using glob and grep patterns to identify the technology stack and the presence of existing configuration files.
- Evidence: Scans project files such as
*.csproj,pyproject.toml, andrequirements.txtto identify frameworks and libraries. - [COMMAND_EXECUTION]: The skill generates summary reports containing suggested shell commands for the user to execute to install necessary dependencies.
- Evidence: Recommends standard installation commands such as
dotnet add package Serilog.AspNetCoreandpip install structlog. - [PROMPT_INJECTION]: The skill ingests data from local project files, which establishes a surface for indirect prompt injection.
- Ingestion points: Project configuration files and application source code (e.g.,
Program.cs,main.py). - Boundary markers: Absent; the skill relies on direct pattern matching for status detection.
- Capability inventory: The skill possesses the ability to write configuration files to the project directory and invoke subsidiary worker skills.
- Sanitization: Absent; identification logic is based on fixed string and regex matching.
Audit Metadata