app-builder
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- Indirect Prompt Injection (LOW): The skill is an orchestration layer that processes untrusted natural language requests to generate code and manage project lifecycles. 1. Ingestion points: The skill accepts user requests such as building specific applications (e.g., 'Instagram clone'). 2. Boundary markers: There are no specific delimiters or 'ignore' instructions for the data processed from the user or templates. 3. Capability inventory: The skill is authorized to use Bash, Write, Edit, and Agent tools across the project structure. 4. Sanitization: No sanitization logic or validation steps for the input data are defined in this file.
- Command Execution (SAFE): Although the skill has permission to use the Bash tool, it does not contain any hardcoded malicious commands or automated execution of untrusted remote scripts.
Audit Metadata