Skills
skills/01000001-01001110/agent-jira-skills/jira-search/Gen Agent Trust Hub

jira-search

Pass

Audited by Gen Agent Trust Hub on Feb 20, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [Indirect Prompt Injection] (LOW): The skill scripts (check-issues.mjs and check-issues.py) ingest and display Jira issue summaries which are considered untrusted external data. If an issue summary is crafted with malicious instructions, it could potentially influence the agent's behavior during subsequent processing steps.\n
  • Ingestion points: Jira issue summaries fetched via the search API in scripts/check-issues.mjs (line 51) and scripts/check-issues.py (line 104).\n
  • Boundary markers: Absent; the data is printed directly to the output without delimiters or warnings.\n
  • Capability inventory: The skill has read access to the Jira API; it does not contain dangerous command execution or file-write capabilities.\n
  • Sanitization: Summaries are truncated to 60 characters for display but are not escaped or sanitized for prompt injection markers.
Audit Metadata
Risk Level
SAFE
Analyzed
Feb 20, 2026, 07:46 PM