Skills
skills/envoydev/agents-stack/create-bug-ticket/Gen Agent Trust Hub

create-bug-ticket

Pass

Audited by Gen Agent Trust Hub on Jun 18, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill possesses an indirect prompt injection surface due to its core functionality of transforming user-provided data.
  • Ingestion points: Untrusted data enters the agent context through the raw problem descriptions provided by users for ticket generation.
  • Boundary markers: The instructions do not define explicit delimiters or include warnings to ignore instructions that might be embedded within the user-provided text.
  • Capability inventory: The skill instructs the agent to offer ticket creation via connected issue-tracker tools (MCPs), providing a mechanism for the agent to perform write operations on external platforms.
  • Sanitization: No input validation, escaping, or filtering mechanisms are specified to protect against malicious instructions contained within the user's input.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 18, 2026, 04:44 PM
Security Audit — agent-trust-hub — create-bug-ticket