prototype
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it processes user requirements to generate and execute code samples.
- Ingestion points: User instructions and project code context (SKILL.md).
- Boundary markers: The skill does not define specific delimiters for separating user-provided data from instructions.
- Capability inventory: The agent is authorized to write files and execute commands (pnpm, python, bun) to run the prototypes (SKILL.md, FEASIBILITY.md).
- Sanitization: The skill relies on the agent's internal safety filters and the execution context's standard limits.
- [COMMAND_EXECUTION]: The skill uses shell commands to run the created prototypes through the project's native task runners (e.g., pnpm, bun, python, pytest). This behavior is the core functional requirement of the skill and is consistent with standard development automation practices.
Audit Metadata