feature-flags
Pass
Audited by Gen Agent Trust Hub on Jun 18, 2026
Risk Level: SAFEDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [PROMPT_INJECTION]: The skill generates infrastructure for fetching remote configurations, creating a surface for indirect prompt injection. A compromised remote server could provide malicious data that influences application behavior via the generated flag toggles.
- Ingestion points: The generated
RemoteFeatureFlagProvider.swifttemplate fetches JSON configuration from a remote URL. - Boundary markers: Data ingestion is constrained by a predefined
FeatureFlagenum and extracted via typed getter methods (e.g.,boolValue,stringValue). - Capability inventory: The generated infrastructure includes network access via
URLSessionand local file writes for disk caching. - Sanitization: The code utilizes standard
JSONSerializationandJSONDecoderfor data validation and structure enforcement. - [DATA_EXFILTRATION]: The generated code includes networking capabilities to fetch data from remote endpoints and file system access to cache configuration values locally.
- The
RemoteFeatureFlagProvider.swifttemplate performs network requests usingURLSessionto communicate with user-defined servers. - Configuration data is persisted to a
feature_flags_cache.jsonfile within the application's cache directory.
Audit Metadata