deployment-verification-agent
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [NO_CODE] (SAFE): The skill consists entirely of markdown-based prompt instructions and contains no executable scripts, binaries, or automated tasks.
- [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection (Category 8). Ingestion points: The agent processes PR titles, descriptions, and behavioral data provided by users (SKILL.md). Boundary markers: The instructions do not define delimiters or specific constraints to ignore instructions embedded within the untrusted PR data. Capability inventory: The agent generates SQL verification queries, Ruby snippets, and shell commands (rails/rake) for execution (SKILL.md). Sanitization: No input validation or sanitization routines are specified for the ingested PR content.
Audit Metadata