quality-refinement-autoloop
Warn
Audited by Gen Agent Trust Hub on May 12, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides instructions for performing Git-based workflows including staging, committing, and pushing changes using the Bash tool (SKILL.md, Phase 8).
- [DATA_EXFILTRATION]: The instructions enable a data egress path through Git operations. While Phase 4 and Phase 6 mandate sanitization checks using
scripts/sanitize_skill_contributions.pyto identify and remove sensitive terms, the capability to upload local repository content to remote servers is present. - [PROMPT_INJECTION]: The diagnostic phase (Phase 1-3) ingests untrusted user feedback to determine 'Skill-gap decisions' and perform skill logic modifications. This creates a surface where external input could potentially influence the behavior or instructions of the refined skills.
- [EXTERNAL_DOWNLOADS]: The skill instructs the agent to 'fetch latest remote' as part of the release process, which involves network communication and data retrieval from external Git repositories.
Audit Metadata