cruise-control
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill executes
node scripts/run-ast-analysis.mjsto perform deep code inspection of the local codebase. - [COMMAND_EXECUTION]: Progress monitoring instructions involve using system utilities such as
cat,jq, andwatchto read local state files. - [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection (Category 8) because its core functionality involves ingesting and acting upon untrusted project data. 1. Ingestion points: All files in the current directory are read and analyzed during the initial phases of the workflow. 2. Boundary markers: No delimiters or explicit safety prompts are used to isolate instructions that might be embedded in the analyzed code. 3. Capability inventory: The skill has the capability to write files, modify the project structure, and execute local scripts. 4. Sanitization: There is no evidence of sanitization or validation of the analyzed content before it influences the agent's automated implementation steps.
Audit Metadata