deslop
Pass
Audited by Gen Agent Trust Hub on Jun 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the agent to run targeted tests or checks on files it has modified, which involves executing shell commands in the local environment.
- [PROMPT_INJECTION]: The skill processes untrusted input in the form of code diffs and possesses file-writing and command-execution capabilities, which constitutes a potential surface for indirect prompt injection. 1. Ingestion points: Local source code files and git diffs on the current branch (SKILL.md). 2. Boundary markers: Absent; there are no instructions to ignore or delimit instructions found within the code being processed. 3. Capability inventory: Local file editing and execution of test commands (SKILL.md). 4. Sanitization: Absent; the skill does not include steps to sanitize or validate the content of the files before processing.
Audit Metadata