ln-775-api-docs-generator
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes system commands for project validation and testing, including 'dotnet build' for .NET and 'python -m py_compile' for Python scripts. It also uses 'curl' to verify documentation availability on localhost endpoints.
- [EXTERNAL_DOWNLOADS]: The skill references and integrates well-known libraries such as Swashbuckle.AspNetCore and FastAPI. These resources originate from trusted organizations and are documented neutrally.
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it ingests untrusted data from local project files during the analysis phase. Ingestion points: Controller and router files scanned within the project directory. Boundary markers: No explicit delimiters are used to separate ingested code comments from instruction context. Capability inventory: File system write access for configuration files and subprocess execution for builds. Sanitization: No specific sanitization or filtering of external source code content is performed before processing.
Audit Metadata