fixbug
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes the project's test suite and newly generated regression tests to verify bug fixes, which involves running local code.
- [PROMPT_INJECTION]: The skill ingests untrusted bug descriptions and issue files that are passed to a diagnostic sub-agent, creating a surface for indirect prompt injection. Ingestion points: Bug descriptions and file references (SKILL.md, Step 1). Boundary markers: None explicitly mentioned to delimit untrusted data from instructions. Capability inventory: File system write access, git commit capabilities, and arbitrary command execution via the project test suite (SKILL.md, Step 6). Sanitization: None mentioned for processing external descriptions.
Audit Metadata