flow-remediator-publisher
Pass
Audited by Gen Agent Trust Hub on Mar 20, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill communicates with an OpenAI-compatible API to perform its primary function of flow remediation. By default, it targets api.openai.com, which is a well-known service. This network activity is documented as part of the skill's intended operation.
- [COMMAND_EXECUTION]: The skill invokes local Python scripts from the lifecycleinventory-review vendor directory using subprocess.run. This is an internal integration mechanism for review logic provided by the same author (tiangong-lca) and does not involve arbitrary command execution.
- [PROMPT_INJECTION]: The skill maintains a surface for indirect prompt injection by processing external flow data and LLM-generated patches. It mitigates this risk by enforcing strict JSON output formats in its prompts and performing mandatory schema validation via tidas_sdk before any database insertion or publishing occurs.
Audit Metadata