ln-772-error-handler-setup
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches technical implementation patterns and RFC standards from trusted organizations including Microsoft (ASP.NET documentation), FastAPI (Tiangolo), and IETF (RFC 7807) via MCP tools. It also references the Mermaid.js library from the well-known JSDelivr CDN for visual documentation in the diagram file.- [COMMAND_EXECUTION]: Utilizes standard system utilities including
dotnet buildandpython -m py_compileto validate the syntax and integrity of generated source code. Usesgrepfor local file system discovery to implement idempotency checks.- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it processes external documentation and user-provided context variables to influence code generation. - Ingestion points: Context variables (
STACK,FRAMEWORK,PROJECT_ROOT,ENVIRONMENT) and external documentation fetched via MCP tools. - Boundary markers: Uses structured 'Required Context' headers but lacks explicit delimiters to isolate external documentation content from the agent's core instructions.
- Capability inventory: Possesses capabilities for file creation, directory scanning via
grep, and subprocess execution for compilation validation. - Sanitization: Includes logic to sanitize application output by enforcing the removal of sensitive error details (stack traces) in production environments.
Audit Metadata