meson
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- EXTERNAL_DOWNLOADS (LOW): The skill documents the use of
meson wrapto download source code and metadata from external URLs (e.g., zlib.net, GitHub). While this involves remote code ingestion, it is a primary intended function of the build system's dependency manager and follows the [TRUST-SCOPE-RULE] for common development sources. - COMMAND_EXECUTION (SAFE): The skill provides standard instructions for software compilation and testing (e.g.,
meson compile,meson test). These are expected behaviors for a build system management skill and do not involve unauthorized privilege escalation. - PROMPT_INJECTION (LOW): The skill is susceptible to Indirect Prompt Injection (Category 8) due to its interaction with external build files.
- Ingestion points: Reads and processes
meson.build,meson.options, and.wrapfiles from the project directory. - Boundary markers: None; the agent interprets the contents of these files directly to configure the environment.
- Capability inventory: Includes subprocess execution (
meson,ninja) and network operations (meson wrap). - Sanitization: No specific sanitization of build file content is implemented beyond standard Meson DSL parsing.
Audit Metadata