Skills
skills/mulesoft/mulesoft-dx/update-mule-run-config/Gen Agent Trust Hub

update-mule-run-config

Pass

Audited by Gen Agent Trust Hub on May 15, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is a standard configuration management utility for Mule development. It utilizes platform-provided tools such as get_workspace_info and manage_run_configuration to perform operations within the scope of the developer's workspace.- [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection as it processes user-provided strings (like configuration names and project paths) and workspace metadata, which are subsequently used in tool call parameters. However, this is inherent to the skill's purpose and is considered acceptable in the context of an IDE extension.
  • Ingestion points: User-provided configuration names and project paths; workspace structure data from get_workspace_info (SKILL.md).
  • Boundary markers: The instructions do not specify delimiters or boundary markers for user-supplied input.
  • Capability inventory: The manage_run_configuration tool can update and execute local runtime configurations (SKILL.md).
  • Sanitization: The instructions do not include steps for sanitizing or validating user-provided or workspace-derived strings.
Audit Metadata
Risk Level
SAFE
Analyzed
May 15, 2026, 05:34 PM
Security Audit — agent-trust-hub — update-mule-run-config