exhaustive-systems-analysis
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill ingests untrusted codebase content during analysis, which serves as a surface for indirect prompt injection attacks. Malicious instructions hidden in code comments or documentation could be used to manipulate the agent's audit results or behavior. * Ingestion points: System files read during Phase 1 (Decomposition) and Phase 2 (Sequential Analysis). * Boundary markers: Absent; no delimiters or ignore-instructions are specified for the analyzed content. * Capability inventory: Includes file system read access for analysis and file system write access for report generation. * Sanitization: No sanitization or validation of the analyzed file content is documented.
- [No Code Shipped] (SAFE): The skill contains no executable scripts, binary files, or external package dependencies, as it is composed entirely of markdown instructions.
Audit Metadata