kafka-development-practices
Pass
Audited by Gen Agent Trust Hub on Apr 26, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill reviews Scala source code, which creates a surface for indirect prompt injection if the analyzed files contain adversarial instructions.
- Ingestion points: Processes any file matching the
**/*.scalaglob pattern via theReadtool. - Boundary markers: Absent. The skill instructions do not define specific delimiters or provide explicit warnings to the agent to disregard instructions found within the code content.
- Capability inventory: The skill has access to potentially sensitive tools including
Bash,Write, andEdit, which increases the impact if the agent follows malicious instructions from a source file. - Sanitization: No sanitization, escaping, or structural validation is performed on the ingested code before analysis.
- [COMMAND_EXECUTION]: The skill documentation includes a 'Memory Protocol' that instructs the agent to execute shell commands (
cat .claude/context/memory/learnings.md) to read local context files to maintain persistence of learnings across sessions.
Audit Metadata