bug-reproduction-validator
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: Indirect Prompt Injection vulnerability surface through user-provided bug reports.
- Ingestion points: User-submitted bug reports and reproduction steps.
- Boundary markers: Absent. The instructions do not specify delimiters to separate untrusted report content from the agent's logic.
- Capability inventory: File system access, database interaction, git history inspection, and script execution.
- Sanitization: Absent. The agent is directed to follow steps found in the report without a validation layer.
- [COMMAND_EXECUTION]: The skill requires the agent to dynamically create and run code to verify issues. The agent is instructed to "Set up the minimal test case" and "Execute the reproduction steps methodically," which involves running local commands or scripts derived from potentially malicious input provided in a bug report.
Audit Metadata