python-debugger
Fail
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: CRITICAL
Full Analysis
- [SAFE] (SAFE): No malicious patterns or behaviors were detected. The skill consists of standard instructional content for software development.
- [SCANNER_ALERT] (SAFE): The URLite scanner alert for 'logger.info' is a false positive. This is a standard logging method call in the Python library, not a malicious URL.
- [PROMPT_INJECTION] (SAFE): No prompt injection attempts or role-play bypass instructions were identified.
- [DATA_EXFILTRATION] (SAFE): No access to sensitive file paths (~/.ssh, ~/.aws) or hardcoded credentials were found.
- [EXTERNAL_DOWNLOADS] (SAFE): Mentions of libraries like 'pytest', 'icecream', and 'rich' are standard for Python debugging and do not involve untrusted remote execution.
- [INDIRECT_PROMPT_INJECTION] (LOW): As a debugging tool, this skill is designed to ingest and process code and tracebacks from potentially untrusted sources (e.g., error logs). This represents a standard attack surface, but there are no exploitable capabilities configured within the skill instructions itself.
Recommendations
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata