deploy-fix
Pass
Audited by Gen Agent Trust Hub on May 4, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No direct prompt injection or safety bypass patterns were found in the instructions. The instructions focus on structured diagnostic and repair workflows.
- [DATA_EXFILTRATION]: No evidence of unauthorized data exfiltration or credential harvesting was found. While the skill interacts with environment variables and configuration files, it does so to diagnose build failures within the local environment.
- [COMMAND_EXECUTION]: The skill uses shell execution (Bash) to run build, lint, and validation commands. This is a high-privilege capability that is central to the skill's stated purpose of fixing deployment pipelines.
- [INDIRECT_PROMPT_INJECTION]: The skill represents an attack surface for indirect prompt injection as it processes untrusted data from build logs, CI output, and repository configuration files (e.g., package.json).
- Ingestion points: Build logs, CI logs, and repository config files (SKILL.md, SKILL.ko.md).
- Boundary markers: None explicitly defined for untrusted data input.
- Capability inventory: Shell execution (Bash), file reading (Read/Grep/Glob), and file writing (Edit/Write) are present across the main skill files.
- Sanitization: No explicit sanitization or validation of the content of the logs or config files is described before processing.
Audit Metadata