arkweb-build
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill defines a workflow for diagnosing build failures where it parses the
build.logfile, extracts the command following aFAILED:marker, and instructs the agent to execute it directly in the shell. This creates a dependency on external file content for command construction during the debugging phase. - [PROMPT_INJECTION]: The skill's log parsing logic is susceptible to indirect prompt injection.
- Ingestion points: The
src/out/<product>/build.logfile is processed byscripts/analyze_build_error.shandSKILL.mdinstructions. - Boundary markers: No explicit delimiters or warnings are used to prevent the agent from obeying instructions embedded in the log file.
- Capability inventory: The agent has the capability to execute shell commands, write files (snapshots), and modify source code within the project directory.
- Sanitization: There is no validation or escaping performed on the strings extracted from the log before they are suggested for execution.
- Ingestion points: The
Audit Metadata