fix-all
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes data from the preceding conversation ('review output') to guide its actions, which creates a surface for indirect prompt injection.\n
- Ingestion points: Preceding review output extracted from the conversation context.\n
- Boundary markers: Absent; the prompt does not use delimiters or instructions to ignore embedded commands within the review data.\n
- Capability inventory: The skill triggers other agents (e.g.,
jbct-coder) to perform code modifications based on the untrusted input.\n - Sanitization: Absent; no validation or escaping of the review content is performed.\n- [No Code] (SAFE): The skill contains no scripts, binaries, or configuration files that execute code directly.
Audit Metadata