paladin-mitigate
Pass
Audited by Gen Agent Trust Hub on May 20, 2026
Risk Level: SAFEPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [PROMPT_INJECTION]: The skill ingests untrusted data from security findings and vulnerability reports to generate its output. There are no explicit instructions to use boundary markers or to ignore instructions embedded within the processed findings.
- Ingestion points: Security findings, CVE/GHSA data, and local configuration files like
PALADIN.mdand../../references/security-sources.md(SKILL.md). - Boundary markers: Not implemented; the agent is not instructed to use delimiters for external content.
- Capability inventory: The agent can inspect local source code paths and automate task creation or updates in external systems including Jira, Linear, and Email (SKILL.md).
- Sanitization: The skill does not define methods for sanitizing or escaping the untrusted finding data before analysis.
- [EXTERNAL_DOWNLOADS]: The skill queries metadata from advisory databases to provide context for vulnerabilities. This functionality is restricted by a specific instruction that forbids downloading proof-of-concept exploits or weaponized payloads.
Audit Metadata