frappe-doctype-builder
Pass
Audited by Gen Agent Trust Hub on Mar 16, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill facilitates the generation of Python, JavaScript, and JSON files based on user requirements, which constitutes an indirect prompt injection surface.
- Ingestion points: User-provided specifications for DocType structures as described in the usage flow.
- Boundary markers: No delimiters or safety instructions are provided to ensure the agent ignores instructions potentially embedded in user-supplied data.
- Capability inventory: The skill generates application-level code files (.py, .js) and structural configurations (.json) for the Frappe framework.
- Sanitization: The skill lacks explicit instructions for validating or escaping user-provided data before it is incorporated into the generated file content.
- [SAFE]: The skill does not contain any obfuscated code, hardcoded credentials, malicious persistence mechanisms, or unauthorized network communication patterns. All framework patterns used in the templates are standard for Frappe development.
Audit Metadata