Skills
skills/promovaweb/skills-devops/promovaweb-devops-review-mysql-stack/Gen Agent Trust Hub

promovaweb-devops-review-mysql-stack

Pass

Audited by Gen Agent Trust Hub on Mar 28, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests and processes content from external files that could contain instructions to bias the audit results.
  • Ingestion points: The skill reads mysql.yaml and mautic.yaml as specified in SKILL.md.
  • Boundary markers: No specific delimiters or instructions are provided to the agent to ignore embedded commands within the YAML files.
  • Capability inventory: The skill is limited to reading configuration files and writing a local audit report (mysql.audit.md).
  • Sanitization: There is no evidence of validation or sanitization of the YAML content before it is processed by the agent.
  • [SAFE]: No data exfiltration, unauthorized network operations, or remote code execution patterns were identified. All actions are confined to the local environment for auditing purposes.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 28, 2026, 04:36 PM