lint
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes shell commands to run Ruby linting and security tools including
bundle exec standardrb,bundle exec erblint, andbin/brakeman. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes external Ruby and ERB files which could contain malicious instructions designed to influence the agent's behavior.
- Ingestion points: Local Ruby (.rb) and ERB (.erb) files.
- Boundary markers: None; the workflow does not specify delimiters or instructions to ignore embedded content.
- Capability inventory: Execution of linter commands and security scanners, and committing changes via git.
- Sanitization: No sanitization or validation of the file content is performed before processing.
Audit Metadata