debug
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection during its analysis phase. 1. Ingestion points: Bug descriptions in arguments and source code files read via the Read tool. 2. Boundary markers: No delimiters are specified to isolate external data from internal instructions. 3. Capability inventory: The toolset includes Bash, Edit, and MultiEdit, which provide significant control over the environment. 4. Sanitization: No input sanitization or filtering of analyzed content is mentioned.
- [COMMAND_EXECUTION]: The skill leverages the Bash tool to perform essential debugging tasks, such as checking repository status and running test suites, which could be exploited if the model is influenced by malicious input.
Audit Metadata