skills/santosomar/general-secure-coding-agent-skills/regression-root-cause-analyzer/Gen Agent Trust Hub
regression-root-cause-analyzer
Pass
Audited by Gen Agent Trust Hub on Mar 29, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructions direct the agent to execute shell commands for repository management and automated testing, including git bisect, git checkout, and pytest. It specifically recommends executing scripts from the local repository using 'git bisect run ./oracle.sh'.
- [PROMPT_INJECTION]: The skill facilitates indirect prompt injection by instructing the agent to ingest and analyze potentially attacker-controlled data from git commit history and code diffs.
- Ingestion points: The agent reads metadata and code via 'git show ', 'git log', and 'git bisect' output as described in SKILL.md.
- Boundary markers: Absent; no instructions are provided to use delimiters or 'ignore' warnings when processing commit messages.
- Capability inventory: The agent maintains capabilities for shell execution and test execution (pytest, ./oracle.sh) while processing the untrusted history.
- Sanitization: Absent; the workflow does not include instructions to sanitize or validate the content of git history before analysis.
Audit Metadata