binlog-failure-analysis
Pass
Audited by Gen Agent Trust Hub on Apr 11, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTION
Full Analysis
- [PROMPT_INJECTION]: The skill processes untrusted external data by replaying MSBuild binary logs and reading project files, which introduces a surface for indirect prompt injection.\n
- Ingestion points: build.binlog (processed via dotnet msbuild), replayed text logs (full.log, errors.log), and project files (.csproj).\n
- Boundary markers: No explicit markers are used to delimit external content from instructions.\n
- Capability inventory: The skill has the ability to execute shell commands including dotnet, grep, cat, head, tail, and find.\n
- Sanitization: No sanitization is applied to the content of the logs or project files before they are read by the agent.\n- [COMMAND_EXECUTION]: The skill relies on the execution of several shell commands to analyze build data.\n
- Evidence: Commands such as dotnet msbuild, grep, cat, head, tail, and find are used throughout the diagnostic workflows.
Audit Metadata