bug-fix
Pass
Audited by Gen Agent Trust Hub on Jun 20, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill implements a strong 'Input Integrity' policy specifically designed to mitigate indirect prompt injection from third-party bug reports.
- It explicitly forbids passing raw bug report text into the LLM context.
- It mandates the extraction of only factual, sanitized context such as error messages and stack traces.
- [SAFE]: The skill uses standard development tools appropriate for its context (Elixir/Phoenix).
- Execution of
mix testis restricted to verification phases. - It includes a manual user approval gate in Phase 3 before any code changes are implemented.
- [SAFE]: No obfuscation, suspicious network requests, or credential exposure patterns were detected in the instructions or metadata.
Audit Metadata