Skills
skills/tjboudreaux/cc-plugin-engineering-excellence/eng-verification/Gen Agent Trust Hub

eng-verification

Pass

Audited by Gen Agent Trust Hub on Mar 1, 2026

Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
  • [SAFE]: The skill consists of instructional markdown guidelines only. No malicious code, obfuscation, or suspicious network activities were identified.- [PROMPT_INJECTION]: The skill defines a workflow for ingesting and acting upon external data, which represents an indirect prompt injection surface:
  • Ingestion points: The agent is instructed to read and inspect command outputs (tests, linters, builds) and VCS diffs as part of the 'Gate Function' in SKILL.md.
  • Boundary markers: Absent; there are no instructions to use delimiters or ignore instructions potentially embedded in the processed output.
  • Capability inventory: The workflow assumes the agent can execute shell commands and read files.
  • Sanitization: Absent; there is no instruction to sanitize or escape the external command output before analysis.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 1, 2026, 01:11 AM