ralph-loop
Pass
Audited by Gen Agent Trust Hub on Mar 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill automatically detects and runs local build, test, and lint commands such as 'npm run build', 'pytest', and 'go test'. This is used to validate code changes during the autonomous iterative cycle.
- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection from the data it processes. Ingestion points: It reads task titles, descriptions, and acceptance criteria from an external project manager, and reviews local source code and git history. Boundary markers: The skill does not implement clear delimiters or instructions to ignore commands hidden within external data. Capability inventory: The agent can modify local files, execute shell commands, and interact with a task management system. Sanitization: No logic is provided to sanitize or filter external content before it is used to influence the agent's work.
Audit Metadata