frontend-mix-fix-validation
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes shell commands for project installation, type-checking, linting, building, and testing. It also executes arbitrary "failing commands" identified within the input validation file to verify fixes.
- [EXTERNAL_DOWNLOADS]: The validation suite includes an installation step which downloads external dependencies from package registries.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes content from external markdown files to guide its logic and command execution.
- Ingestion points: Reads files provided via arguments
$1(validation-issues.md) and$2(plan.md). - Boundary markers: Absent; the instructions do not include delimiters or warnings to ignore instructions embedded in the data files.
- Capability inventory: Includes file system read/write access and the ability to execute shell commands.
- Sanitization: Absent; the agent is instructed to follow the diagnosis and commands found in the input files without validation.
Audit Metadata