pbip
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The validation script (
scripts/validate_pbip.py) usessubprocess.run()to delegate report validation to thepbirCLI tool. This is implemented safely using a list of arguments and a restricted scope. - [EXTERNAL_DOWNLOADS]: The skill recommends installing the
pbir-clitool viauvorpipfor enhanced validation. This is a standard project dependency for PBIP development. - [PROMPT_INJECTION]: The skill documentation identifies the
Copilot/folder, which contains markdown-based AI instructions (instructions.md). This represents a potential surface for Indirect Prompt Injection. - Ingestion points:
Copilot/Instructions/instructions.mdandVerifiedAnswers/folders in PBIP projects. - Boundary markers: None explicitly mentioned for the ingestion of these specific files.
- Capability inventory: Subprocess execution of
pbirand local file write operations for project scaffolding inscripts/validate_pbip.py. - Sanitization: Standard path resolution and Zip Slip protection are implemented in the provided Python code snippets for archive extraction.
Audit Metadata