workflow-bugfix
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill uses authoritative directives such as "CRITICAL" and "MANDATORY" to enforce a specific sequence of operations and prevent the agent from bypassing steps.
- [PROMPT_INJECTION]: The skill exposes a surface for indirect prompt injection by ingesting untrusted data.
- Ingestion points: The user's prompt is used as the context for the
/workflow-startcommand inSKILL.md. - Boundary markers: Absent; there are no delimiters or instructions provided to the agent to treat the user input as untrusted data.
- Capability inventory: Significant; the workflow includes commands for code modification (
/fix), investigation (/debug), and testing (/test). - Sanitization: Absent; user input is passed directly into the workflow orchestration.
Audit Metadata