Skills
skills/ulpi-io/skills/create-tests-extract/Gen Agent Trust Hub

create-tests-extract

Pass

Audited by Gen Agent Trust Hub on Apr 1, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it reads and processes external source code files which may contain malicious instructions embedded in comments or strings. \n
  • Ingestion points: The skill reads source files, modules, and test blocks using the Read and Grep tools (SKILL.md Step 0).\n
  • Boundary markers: Absent. The instructions do not define delimiters or provide specific warnings to the agent to ignore or isolate instructions found within the processed source code.\n
  • Capability inventory: The skill has access to high-impact tools including Bash, Write, Edit, and Skill (SKILL.md frontmatter).\n
  • Sanitization: Absent. There is no evidence of sanitization, escaping, or validation of the content read from external files before it is used to determine refactoring steps or shell command execution for testing.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 1, 2026, 04:41 AM