rust-security
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill recommends installing established Rust security tools such as
cargo-audit,cargo-deny,cargo-fuzz,cargo-vet, andcargo-machetevia the officialcargopackage manager. - [EXTERNAL_DOWNLOADS]: References vulnerability data and advisories from the official RUSTSEC database at
rustsec.org, a well-known service in the Rust community. - [COMMAND_EXECUTION]: Suggests the use of local
cargosubcommands for project auditing and security testing, which aligns with its primary purpose of security review. - [INDIRECT_PROMPT_INJECTION]:
- Ingestion points: The agent is instructed to process JSON outputs from
cargo auditand therustsec.orgAPI. - Boundary markers: None present in the prompt templates.
- Capability inventory: Includes local tool installation and execution of build/audit commands.
- Sanitization: Uses
jqto extract specific fields from the structured JSON reports, reducing the risk of processing malicious data as instructions.
Audit Metadata