migrate-custom-code
Pass
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: SAFEPROMPT_INJECTIONCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
- [PROMPT_INJECTION]: The skill processes existing ABAP source code which presents a surface for indirect prompt injection. This risk is intrinsic to the task of code analysis and migration.\n
- Ingestion points: Code is read from the SAP system using SAPRead in SKILL.md.\n
- Boundary markers: Absent; the skill does not use specific markers to distinguish between code and instructions.\n
- Capability inventory: The skill has the ability to write to the system using SAPWrite and SAPActivate in SKILL.md.\n
- Sanitization: No sanitization or filtering of the ingested source code is performed prior to processing.\n- [COMMAND_EXECUTION]: The skill utilizes tools such as SAPWrite and SAPActivate to modify and enable source code in the target SAP environment. These operations are essential for the migration process and are triggered based on user selection.\n- [DATA_EXFILTRATION]: The agent reads ABAP source code and diagnostic data (SAPRead, SAPDiagnose) to provide explanations and fixes. While this involves accessing sensitive intellectual property, it is restricted to the context of the migration task.
Audit Metadata