data-engineer
Pass
Audited by Gen Agent Trust Hub on Apr 29, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were detected. The skill follows standard software engineering practices for data pipeline development and code review.
- [COMMAND_EXECUTION]: The skill instructs the agent to execute common development tools such as
pytest,mypy, andrufffor code verification, type checking, and linting. These are standard operations for a data engineering assistant. - [PROMPT_INJECTION]: The skill processes external task specifications and existing codebases as part of its implementation and review workflows. This represents an indirect prompt injection surface; however, the skill incorporates structured workflows and uses standard verification tools, posing no significant risk beyond inherent LLM behavior. Evidence chain:
- Ingestion points: Reads architecture designs, task specifications, and existing source code files.
- Boundary markers: None present.
- Capability inventory: Writes code and test files; executes shell commands via
pytest,mypy, andruff. - Sanitization: None present.
Audit Metadata