frontend-mix-fix-validation

Pass

Audited by Gen Agent Trust Hub on Jun 20, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes shell commands for project installation, type-checking, linting, building, and testing. It also executes arbitrary "failing commands" identified within the input validation file to verify fixes.
  • [EXTERNAL_DOWNLOADS]: The validation suite includes an installation step which downloads external dependencies from package registries.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes content from external markdown files to guide its logic and command execution.
  • Ingestion points: Reads files provided via arguments $1 (validation-issues.md) and $2 (plan.md).
  • Boundary markers: Absent; the instructions do not include delimiters or warnings to ignore instructions embedded in the data files.
  • Capability inventory: Includes file system read/write access and the ability to execute shell commands.
  • Sanitization: Absent; the agent is instructed to follow the diagnosis and commands found in the input files without validation.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 20, 2026, 11:38 PM
Security Audit — agent-trust-hub — frontend-mix-fix-validation