logistic-container
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- Prompt Injection (LOW): The file 'skill-snitch-report.md' contains a mock security audit with a pre-set 'APPROVE' verdict. This is a self-referential injection attempt (Category 8e) designed to bias the analyzer's findings.
- Indirect Prompt Injection (LOW): The skill ingests data from environment files to drive automated file system changes. Ingestion points: LOGISTIC-CONTAINER.yml, ROOM.yml, and CELL.yml are read using read_file. Boundary markers: No delimiters or warnings are used to isolate untrusted data. Capability inventory: The skill uses read_file, write_file, list_dir, and mkdir to manage inventory. Sanitization: No explicit sanitization or validation of the YAML content is described.
- Safe (SAFE): No remote code execution, external downloads, or credential exfiltration patterns were identified. The requested file system permissions are appropriate for the skill's stated logistics purpose.
Audit Metadata