bug-hunter
Pass
Audited by Gen Agent Trust Hub on Feb 26, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the analysis of untrusted external data such as logs and bug reports, which establishes a surface for indirect prompt injection. This behavior is necessary for its primary purpose as a diagnostic tool.\n
- Ingestion points: Error logs, stack traces, and bug descriptions processed according to the methodology in SKILL.md.\n
- Boundary markers: None specified for delimiting untrusted content.\n
- Capability inventory: Command execution (npm, git) and the memory_store tool.\n
- Sanitization: No explicit instructions for sanitizing or escaping input data.\n- [COMMAND_EXECUTION]: The debugging methodology suggests using CLI tools such as git bisect and application scripts like npm start to reproduce and isolate software defects.\n- [DATA_EXFILTRATION]: The skill provides examples of logging HTTP headers and state variables, which may expose sensitive information such as authentication tokens within the agent's internal logs during the diagnosis phase.
Audit Metadata