ln-631-test-business-logic-auditor
Pass
Audited by Gen Agent Trust Hub on May 9, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill analyzed untrusted codebase test files which presents an indirect prompt injection surface. (1) Ingestion points: Test files are scanned using Read, Grep, and Glob tools (SKILL.md Workflow). (2) Boundary markers: No specific delimiters or ignore-instructions are specified to wrap the ingested content within the prompt. (3) Capability inventory: The skill uses Read, Grep, Glob, Bash, and Write capabilities (SKILL.md and references). (4) Sanitization: No explicit sanitization, validation, or escaping of codebase content is performed before processing.
- [DATA_EXFILTRATION]: The skill reads codebase files and writes audit reports to a managed local output directory. No unauthorized network activity or exfiltration of sensitive information was detected.
- [REMOTE_CODE_EXECUTION]: Analysis is performed using local Grep, Glob, and Bash tools as part of the defined audit methodology. No patterns for downloading or executing remote code from untrusted sources were found.
Audit Metadata