Feature Dependency Mapper
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill processes external source code which can serve as a vector for malicious instructions. 1. Ingestion points: The skill uses 'Read' and 'Grep' tools to scan project files. 2. Boundary markers: No explicit delimiters or instructions are used to ignore embedded commands in the source code. 3. Capability inventory: The skill has the 'Edit' tool enabled, allowing for filesystem modifications based on analyzed content. 4. Sanitization: There is no evidence of input validation or instruction filtering for the ingested code.
Audit Metadata