dx-data-navigator
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- Indirect Prompt Injection (LOW): The schema definitions identify several points where untrusted data from external platforms enters the agent's context, creating an attack surface.
- Ingestion points: Data is ingested from external platforms through fields like
jira_issues.summary,github_issues.title,pull_requests.title, anddx_platform_response_answers.value. - Boundary markers: No boundary markers or instructions to ignore embedded content are defined in these reference schemas.
- Capability inventory: No execution scripts are included in this set, but the schema facilitate data aggregation and reporting tasks.
- Sanitization: No evidence of data sanitization or validation is present in the schema documentation.
Audit Metadata