anti-hallucination
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill requires the agent to execute code and troubleshoot errors as a mandatory step before providing results (Rule 2). This ensures code validity but utilizes powerful execution tools.
- [INDIRECT_PROMPT_INJECTION]: The protocol encourages the ingestion of untrusted external data from project files (Rule 1) followed by the execution of code that may be influenced by that data (Rule 2). This sequence could allow malicious instructions within project files to be executed during the verification phase. Ingestion points: Project files and documentation read via 'cat', 'ls', and 'grep' (SKILL.md). Boundary markers: Not specified. Capability inventory: Execution of arbitrary shell and script code (Rule 2). Sanitization: No sanitization or validation of input data is mentioned.
Audit Metadata