matlab-diagnose-parfor
Pass
Audited by Gen Agent Trust Hub on Jun 22, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues were identified. The skill is purely instructional and utilizes a platform-integrated static analysis tool (mcp__matlab__check_matlab_code) to ensure technical accuracy.
- [PROMPT_INJECTION]: The skill includes instructions such as "ALWAYS use this skill instead of reasoning from training data" and "Do NOT reason about parfor classification rules from memory." These are classified as benign instructional guardrails designed to prevent the AI from generating incorrect technical advice based on its internal weights, rather than attempts to bypass safety filters.
- [PROMPT_INJECTION]: The skill processes untrusted MATLAB source code, creating a surface for indirect prompt injection. The risk is assessed as low because the diagnostic workflow is centered on the output of a static analyzer rather than executing or obeying logic within the code itself. 1. Ingestion points: User-provided MATLAB (.m) files processed by the agent. 2. Boundary markers: File paths and original filenames provided in the context of the user request. 3. Capability inventory: Static code analysis via mcp__matlab__check_matlab_code and text generation for proposed fixes. 4. Sanitization: No explicit sanitization of user-provided code is mentioned.
Audit Metadata