sast-report
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill performs expected behavior for a security reporting tool, reading local result files and generating a consolidated summary. No evidence of prompt injection, data exfiltration, or unauthorized command execution was found.
- [DATA_EXPOSURE]: The skill accesses files within the
sast/directory to extract vulnerability data. This is restricted to the intended project scope and does not involve sensitive system files or credentials. - [COMMAND_EXECUTION]: While the skill instructions mention extracting 'Dynamic Test' steps (which may contain shell commands like
curl), the skill is designed only to record these in the report, not to execute them.
Audit Metadata