fix-issue
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: No malicious code, obfuscation, or unauthorized data exfiltration patterns were detected. The skill follows best practices for AI agent safety, including mandatory user approval for code changes and maintaining an external analysis log.\n- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection as it processes untrusted data from GitHub issues.\n
- Ingestion points: GitHub issue title, description, and reproduction steps.\n
- Boundary markers: No explicit delimiters or instructions to ignore embedded commands in the issue data are present in this file.\n
- Capability inventory: File system write access (analysis logs), code modification capabilities, and tool/skill execution (debug, TaskCreate, AskUserQuestion).\n
- Sanitization: No explicit sanitization or filtering of the ingested issue content is defined.\n
- Context: The risk is mitigated by the skill's requirement for high confidence scores (95%) and explicit user approval before any code modifications are implemented.
Audit Metadata