oma-debug
Pass
Audited by Gen Agent Trust Hub on Apr 10, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill operates within a defined debugging scope using local analysis tools. No unauthorized data exfiltration, malicious command execution, or credential exposure was detected.
- [PROMPT_INJECTION]: The skill processes untrusted data (bug reports and error logs), creating an indirect prompt injection surface. 1. Ingestion points: User-provided bug reports and logs during the understanding phase. 2. Boundary markers: Absent; user data is not explicitly delimited from instructions. 3. Capability inventory: Symbolic search and code modification capabilities. 4. Sanitization: Verification is performed via a security checklist to ensure no vulnerabilities are introduced in the resulting code.
Audit Metadata