code-debugging
Pass
Audited by Gen Agent Trust Hub on Feb 22, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill is designed to process untrusted data ($0 and $1 which represent error logs and source code).
- Ingestion points: Variables $0 (Error message) and $1 (Code file) are the primary entry points for untrusted content.
- Boundary markers: The instructions do not explicitly specify delimiters or sanitization for these inputs.
- Capability inventory: The skill facilitates code modification and re-execution ('Fix and rerun, up to 4 retries'), which is a powerful capability if the input contains malicious instructions.
- Sanitization: None detected.
- Context: This is considered a low-risk vulnerability surface inherent to the tool's primary function as a debugger.
- [Dynamic Execution] (SAFE): The skill describes a state machine for regenerating and repairing code. While this involves dynamic code generation, it is the intended primary purpose of the skill and follows standard iterative development patterns.
- [Data Exposure & Exfiltration] (SAFE): Analysis of the skill reveals no hardcoded credentials, API keys, or instructions to send data to external servers. It relies on local reference files and user-provided input.
Audit Metadata