bandit-sast
Pass
Audited by Gen Agent Trust Hub on Apr 25, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill facilitates the installation of the 'bandit' package from the standard Python Package Index (PyPI) when necessary. This dependency is required for the skill's primary function and targets a reputable package registry.
- [PROMPT_INJECTION]: As a security scanner, the skill processes untrusted Python source files, which presents a surface for indirect prompt injection. (1) Ingestion points: The skill reads project files including *.py, requirements.txt, setup.py, pyproject.toml, and Pipfile. (2) Boundary markers: No specific delimiters or instruction-bypass warnings are defined for the ingested code content. (3) Capability inventory: The skill can execute shell commands (bandit) and perform package installations (pip). (4) Sanitization: The instructions do not specify sanitization or escaping of the content read from files before analysis.
- [SAFE]: The skill's operations align with its stated purpose. It prioritizes verifying tool availability and provides transparent reporting, distinguishing between automated tool output and manual review results.
Audit Metadata