debug-investigator
Pass
Audited by Gen Agent Trust Hub on Apr 12, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection by design, as it requires the agent to ingest and analyze potentially untrusted external data.
- Ingestion points: The workflow involves reading and analyzing symptom descriptions, error stacktraces, log outputs, and code diffs (SKILL.md, Phases 1 and 2).
- Boundary markers: There are no explicit instructions or delimiters defined to prevent the agent from following instructions that might be embedded within the logs or stacktraces being analyzed.
- Capability inventory: The skill utilizes file system access and git commands (git log, git diff, git bisect) to perform its functions.
- Sanitization: The skill does not implement or mandate any sanitization, escaping, or validation of the external content before it is processed by the agent.
Audit Metadata