debugging
Pass
Audited by Gen Agent Trust Hub on Apr 14, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: Executes repository-specific build and test commands (e.g.,
npm run build,npm test,pytest) and project management tools (beads-cli,beads-viewer) to triage and resolve issues. - [EXTERNAL_DOWNLOADS]: Interacts with a local MCP server (
mcp_agent_mail) to fetch project context and coordinate with other agents. - [DATA_EXFILTRATION]: Sends technical reports (classifications, root causes, and blockers) to project coordinators through an MCP messaging system as part of its intended diagnostic function.
- [PROMPT_INJECTION]: Operates on external project data, including source code and build logs, which presents a surface for indirect prompt injection.
- Ingestion points: Reads from
src/,history/, and temporary build logs. - Boundary markers: No explicit delimiters or "ignore" instructions are used when processing logs or code.
- Capability inventory: Can execute shell commands and send messages via MCP.
- Sanitization: Content is processed directly without escaping or validation.
Audit Metadata