dep-graph
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- COMMAND_EXECUTION (LOW): The skill executes local system commands including 'grep' and 'ast-grep' and runs a Python script ('build-graph.py') to process the local codebase.
- EXTERNAL_DOWNLOADS (LOW): The generated HTML report relies on the vis-network library loaded from a CDN at runtime in the browser.
- PROMPT_INJECTION (LOW): Vulnerable to Indirect Prompt Injection (Category 8). The skill reads potentially untrusted data from the local filesystem and interpolates it into an HTML report. * Ingestion points: Local file paths and source code import statements (Phase 1 and 2). * Boundary markers: None specified for the output data in the report. * Capability inventory: Filesystem read, command execution, and writing the final HTML report. * Sanitization: Incomplete; Phase 4-2 mentions escaping only the '' tag, which is insufficient to prevent XSS if a file name or path contains other malicious HTML or script attributes.
Audit Metadata