diagnose
Pass
Audited by Gen Agent Trust Hub on May 14, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it ingests untrusted data from external sources. * Ingestion points: User-provided bug reports, log dumps, and HAR files (SKILL.md). * Boundary markers: Absent. * Capability inventory: Command-line execution, network requests via curl, and git bisect automation (SKILL.md). * Sanitization: Absent. The lack of delimiters or sanitization for these artifacts could allow embedded instructions to influence the agent's diagnostic actions.
- [COMMAND_EXECUTION]: The skill requires the agent to perform extensive command-line operations, including running test suites, executing curl commands against local or remote servers, and automating bisection via git.
Audit Metadata