Skills
skills/ab300819/skills/devdocs-dev-tasks/Gen Agent Trust Hub

devdocs-dev-tasks

Pass

Audited by Gen Agent Trust Hub on Mar 18, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill contains a surface for indirect prompt injection as it processes and interprets content from external documentation files.\n
  • Ingestion points: The skill reads from docs/devdocs/01-requirements.md, 02-system-design.md, and 03-test-cases.md to identify components and tasks (specified in SKILL.md).\n
  • Boundary markers: The instructions do not define delimiters or specific 'ignore' instructions for the content read from these external documents, which may allow embedded malicious instructions to influence the agent.\n
  • Capability inventory: The skill is permitted to use Bash, Write, Glob, and Grep tools, providing a broad capability surface if an injection attack were successful.\n
  • Sanitization: There is no description of content validation or sanitization for the inputs retrieved from the prerequisite documents before they are used in the task generation logic.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 18, 2026, 06:57 AM