common-appsec-patterns
Pass
Audited by Gen Agent Trust Hub on Feb 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill definition consists of legitimate instructions for coordinating security testing tasks. No malicious patterns such as prompt injection, obfuscation, or persistence mechanisms were detected.
- [Indirect Prompt Injection] (LOW): The skill is designed to ingest and analyze untrusted data from external web applications (XSS/injection testing), which creates an indirect prompt injection surface.
- Ingestion points: Target web applications, REST APIs, GraphQL endpoints, and JavaScript frameworks.
- Boundary markers: Absent; the instructions do not define specific delimiters for separating target data from agent instructions.
- Capability inventory: The skill utilizes the 'Task' tool to spawn and coordinate subagents based on ingested data.
- Sanitization: No explicit sanitization or input validation logic is described in the skill instructions.
Audit Metadata