Skills
skills/agent-sh/agentsys/validate-delivery/Gen Agent Trust Hub

validate-delivery

Pass

Audited by Gen Agent Trust Hub on Mar 15, 2026

Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes various build and test commands (including 'npm test', 'pytest', 'cargo test', 'go test', 'npm run build', 'cargo build', and 'go build') based on the detection of specific project configuration files. This results in arbitrary command execution if those project files (such as scripts in 'package.json') are controlled or modified by an untrusted party.
  • [PROMPT_INJECTION]: The skill processes untrusted data from multiple sources, creating an indirect injection surface.
  • Ingestion points: Project configuration files ('package.json', 'pytest.ini', 'Cargo.toml', 'go.mod') and the 'task.description' field used in the 'checkRequirementsMet' function.
  • Boundary markers: No boundary markers, delimiters, or 'ignore instructions' warnings are used to isolate untrusted input from the execution logic.
  • Capability inventory: The skill has the capability to execute shell commands via Bash and perform Git operations ('git stash').
  • Sanitization: No sanitization or validation is performed on the requirements extracted from the task description or on the commands executed via the detected build and test runners.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 15, 2026, 07:31 PM
Security Audit — agent-trust-hub — validate-delivery