ops-nuke-cicd
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the ingestion of external tool outputs and logs (e.g., Docker push results and CI execution logs) for troubleshooting and variable extraction, creating a surface for indirect prompt injection.
- Ingestion points: Data enters the agent context through the parsing of Docker push outputs in 'assets/nuke-target-template-docker-push-digest.cs' and log inspection described in 'references/pipeline-reliability-and-observability.md'.
- Boundary markers: There are no explicit delimiters or instructions provided to ignore potentially malicious embedded commands within the processed data.
- Capability inventory: The skill utilizes powerful capabilities, including subprocess execution via 'DotNetTasks'/'DockerTasks' and filesystem writes via 'StreamWriter' in the provided templates.
- Sanitization: No explicit sanitization or escaping of external content before processing is defined in the guidance.
Audit Metadata