systematic-debugging
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill employs authoritative and imperative language (e.g., 'The Iron Law', 'Violating... is violating the spirit') to override default agent behavior in favor of the specified debugging process. It also introduces a surface for indirect prompt injection by instructing the agent to process potentially untrusted external data such as error messages, stack traces, and component logs. 1. Ingestion points: error messages, stack traces, and component logs. 2. Boundary markers: none specified for external data analysis. 3. Capability inventory: execution of diagnostic bash scripts and system commands (e.g., codesign, security). 4. Sanitization: no validation or escaping of external content is defined.
- [COMMAND_EXECUTION]: The skill provides examples of diagnostic bash commands to gather evidence, including environment variable inspection ('env | grep') and macOS keychain listing ('security list-keychains'), which involve accessing system state for troubleshooting purposes.
Audit Metadata