fiber-routing-and-csrf-protection
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a vulnerability to indirect prompt injection (Category 8). It instructs the agent to analyze potentially untrusted user code while having access to powerful tools.
- Ingestion points: User-provided code snippets intended for review within the 'internal/handlers' directory.
- Boundary markers: No markers or explicit instructions are provided to the agent to treat the input code as data only or to ignore embedded instructions.
- Capability inventory: The skill's configuration includes the 'Read', 'Write', and 'Edit' tools.
- Sanitization: No input validation or sanitization routines are implemented for the code being processed.
Audit Metadata