foundry-poc
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it is designed to analyze untrusted smart contract source code. A malicious actor could embed instructions within a smart contract's comments or metadata to influence the agent's behavior. \n
- Ingestion points: The agent reads external smart contract files (SKILL.md instructions). \n
- Boundary markers: No delimiters or specific 'ignore-embedded-instructions' warnings are defined for the input source code. \n
- Capability inventory: The skill's output is intended for execution in the Foundry environment (forge test), which supports powerful features like Foreign Function Interface (vm.ffi) that allow shell command execution. \n
- Sanitization: No sanitization or validation of the input source code is specified.
Audit Metadata