env-config-validator
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted data from the user's environment files and codebase (Step 1 and 2 in Process). This creates an indirect prompt injection surface where malicious instructions embedded in file content could manipulate the agent's behavior.
- Ingestion points: Reads .env files and source code files (.ts, .js, .tsx, .jsx).
- Boundary markers: Absent. No delimiters are used to separate scanned content from instructions.
- Capability inventory: Reading and writing local files (e.g., .env, .env.example, env.ts).
- Sanitization: Absent. The skill does not validate or sanitize the content of the files it reads before processing.
Audit Metadata