deno-debugger
Warn
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: MEDIUMEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS] (LOW): The skill imports dependencies from 'https://deno.land/std@0.224.0/', which is a trusted Deno source.
- [COMMAND_EXECUTION] (LOW): The 'concurrent_helper.ts' script provides a tool to perform arbitrary HTTP requests to any URL, which could be used for network probing.
- [DATA_EXFILTRATION] (MEDIUM): The skill can read local files via 'breadcrumbs.ts' and perform network requests via 'concurrent_helper.ts', creating a potential path for sensitive data exfiltration.
- [PROMPT_INJECTION] (MEDIUM): The skill is susceptible to indirect prompt injection by processing untrusted data from debugger targets. Ingestion points: fetch responses in 'concurrent_helper.ts' and heap data analysis. Boundary markers: None observed in provided scripts. Capability inventory: Network access (fetch) and file system access (writeTextFile, readTextFile). Sanitization: No sanitization or validation of external content was found in the analysis scripts.
Audit Metadata