setup-projects
Pass
Audited by Gen Agent Trust Hub on Mar 5, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses the Bash tool to execute 'mkdir -p' for directory creation. This is a standard initialization procedure for the stated purpose.
- [DATA_EXFILTRATION]: The skill writes to local markdown files and does not access sensitive system paths or perform network requests.
- [PROMPT_INJECTION]: No attempts to bypass safety filters or override agent instructions were detected.
- [INDIRECT_PROMPT_INJECTION]: The skill accepts user input for project and session storage paths. 1. Ingestion points: User-provided strings via AskUserQuestion in Step 1. 2. Boundary markers: None. 3. Capability inventory: Bash (mkdir) and Write tools are used to setup the environment. 4. Sanitization: Relies on agent-level path validation. This ingestion point is limited to local configuration and is considered safe.
Audit Metadata