placement-analysis
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill contains a shell command (
ls -d elephant-ai/web/src/components/*/) intended to verify the current state of the directory structure before making component placement decisions. - [PROMPT_INJECTION]: The skill possesses an indirect prompt injection attack surface because it directs the agent to ingest and analyze the contents of the
elephant-aicodebase. - Ingestion points: The agent is instructed to read from multiple directories including
elephant-ai/web/src/components/,elephant-ai/web/src/pages/,elephant-ai/web/src/app/, andelephant-ai/web/src/layouts/. - Boundary markers: No specific delimiters or instructions to ignore potential commands embedded within the analyzed code are present.
- Capability inventory: The skill utilizes directory listing (
ls) and analysis logic that requires reading file contents. - Sanitization: There is no evidence of content sanitization or validation of the files being read from the repository.
Audit Metadata