abap
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: Fetches the @abaplint/cli package from the npm registry and references dependency repositories on GitHub, including github.com/abaplint/deps and github.com/abapedia/steampunk-2302-api.
- [COMMAND_EXECUTION]: Executes shell commands to install and run the linter tool, as well as to generate configuration files using shell redirection.
- [PROMPT_INJECTION]: The skill processes user-provided ABAP code, which constitutes an untrusted data ingestion point.
- Ingestion points: User-provided ABAP source code (SKILL.md).
- Boundary markers: None specified for user-provided code.
- Capability inventory: Shell command execution via npm, npx, and abaplint across CLI operations.
- Sanitization: No explicit sanitization or validation of the input ABAP code before processing.
Audit Metadata