debug-systematic
Pass
Audited by Gen Agent Trust Hub on Mar 18, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it instructs the agent to process and follow logic derived from untrusted external data.
- Ingestion points: Data is ingested via the $ARGUMENTS variable containing bug descriptions and through the contents of local files read during the debugging process.
- Boundary markers: The skill does not provide any delimiters or explicit instructions to ignore embedded commands within the ingested data.
- Capability inventory: The agent is granted access to powerful tools including Bash, Read, Grep, and Glob, which could be leveraged if an injection occurs.
- Sanitization: There are no steps included to sanitize, validate, or filter the input data before it is interpreted by the agent.
Audit Metadata